Hackers Claim to Have Breached Volkswagen
When a company's name becomes part of the blackmail process, it's already a vulnerability.
Volkswagen Group unexpectedly appeared on a darknet platform where the Stormous hacker group publishes data of its victims. The statement emerged at the end of May, but no confirmation of a real breach or data leak was found at the time of publication.
The hackers claim to have gained access to user accounts, authentication tokens, access management data, and other internal information. However, no samples or files were provided to back up these claims. Instead, Stormous posted non-functional links. Nevertheless, the group is known in the cybercriminal world, and their statements are not always empty.
Experts suggest this behavior could be a form of pressure: the refusal to publish evidence immediately may indicate an attempt at blackmail—hackers might be waiting for a reaction from the potential victim and possibly initiating negotiations.
If the threat is confirmed, the consequences for Volkswagen could be serious. A leak of authentication tokens and other identification data could lead to account hijacking and unauthorized access to internal systems. Additionally, there could be the compromise of users' personal data, including names and email addresses, which may result in privacy breaches and regulatory consequences.
Stormous has been active since 2022 and has established itself as one of the more persistent groups in the ransomware market. Previously, it claimed responsibility for an attack on the Belgian brewery Duvel Moortgat and allegedly published leaked passwords and email addresses of French organizations. According to the Ransomlooker platform, which tracks darknet activities, Stormous has attacked at least 34 organizations in the past year.
At this point, representatives of Volkswagen Group have not commented on the situation. It's possible that the attack may turn out to be fake, as often happens on the darknet, where threats are used as a pressure tactic, even without real access to data.
