Kia Motors Ransomware Attack: Details Emerge

 Kia Motors America has suffered a ransomware attack by the DoppelPaymer gang, Bleeping Computers reports.

The report mentions:

  • Hackers are demanding $20 million for a decryptor and not to leak stolen data.
  • Kia is suffering a nationwide IT outage that affects the company’ mobile UVO Link apps, phone services, payment systems, owner’s portal, and internal sites used by dealerships.

A Kia Motors America statement to Bleeping Computers said:

“KMA is aware of IT outages involving internal, dealer and customer-facing systems, including UVO. We apologize for any inconvenience to our customers and are working to resolve the issue and restore normal business operations as quickly as possible.” – Kia Motors America.

DoppelPaymer Ransomware: Earlier Warnings

Webroot, an OpenText company, listed DoppelPaymer among the nastiest malware of 2020.

The FBI issued a DoppelPaymer warning in 2020, after the ransomware surfaced in 2o19. DoppelPaymer ransomware attack victims include the City of Torrance, California; hackers allegedly stole more than 200 GB of files from the city in early 2020.

Trend Micro offers this overview of how DoppelPaymer ransomware attacks typically work.