RansomHub Increases Pressure on JG Summit Holdings: Sensitive Data at Risk After Ignored Demands

On August 20, 2024, Deep Web Konek, a tech watchdog specializing in monitoring deep web activities, reported that the ransomware group RansomHub has ramped up its attack on JG Summit Holdings, Inc. This escalation follows the company’s failure to address the group’s initial demands. RansomHub claims to have accessed multiple domains within JG Summit’s network and is threatening to expose sensitive data unless their ransom is paid. 

The group has provided samples of the stolen information to substantiate their claims and warned of releasing further data, including passwords and network entry points. Despite JG Summit’s efforts to enhance their security measures, RansomHub remains confident in its ability to exploit existing vulnerabilities. 

Previously, on August 08, Deep Web Konnek had reported that RansomHub had carried out a ransomware attack on JG Summit, encrypting data across more than 40,000 computers within the company. The group expressed frustration over the lack of response from JG Summit and threatened additional attacks if their demands were not met.  

The following day, JG Summit confirmed that it is working in close coordination with cybersecurity specialists and partners to actively examine and address the situation. The company also emphasized, “We have initiated our full response protocols and enhanced our security measures to protect data. All business operations are running normally.” 

JG Summit, one of the Philippines’ largest conglomerates, manages various businesses owned by the Gokongwei family including Universal Robina Corporation, Robinsons Land Corporation, Cebu Pacific Air, Inc., JG Summit Olefins Corporation, and Robinsons Bank. 

As of writing, JG Summit has not yet released an official response about the recent incident on August 20.