- Qilin ransomware group claims to have breached TWU Local 100 in New York
- The data was allegedly leaked to the dark web; union represents 41,000 workers and 26,000 retirees
- Stolen PII could fuel phishing and fraud; Members are urged to remain vigilant.
Feared Qilin ransomware operators added the Transport Workers Union of America (TWU) Local 100 chapter to their data breach site, saying they broke into the organization and already leaked everything they stole onto the dark web.
TWU Local 100 is the local union that represents tens of thousands of transportation workers in and around New York City, including people who operate and maintain subways, buses, and other transit services, as well as workers at some private bus and ferry companies.
It primarily organizes workers for representation and labor rights with different employers, such as the Metropolitan Transportation Authority (MTA), or various private operators. Negotiate contracts, handle complaints, advocate for better wages and working conditions, and more.
What type of data was stored?
Qilin is a Russian-linked ransomware operator blamed for some of the most disruptive attacks in recent history.
Qilin did not say exactly how much data he stole, what it contains or how many people are affected, but in total, TWA Local 100 represents approximately 41,000 workers and 26,000 retirees.
cyber news notes that unions are often a high-value target due to the “prolific amounts” of sensitive data they possess on their workers. Local 100’s website says it collects and maintains personally identifiable information (PII), such as full names, basic contact information, job titles and salary information, health and insurance benefits, as well as pension and retirement planning. However, it also stores data on services such as housing assistance, safety and health, complaints and disciplinary actions, and more.
Cybercriminals can use this information to create very convincing phishing emails, through which they can trick victims into sharing valuable login details or even making fraudulent bank transfers. Potential victims should be wary of incoming email messages, especially those that claim to come from TWU and carry a sense of urgency.
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds. Be sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp also.
