HQ/EMEAFind out how we can help your business
In a recent discovery by iZOOlogic security researchers, the ransomware group Kill Security 2.0, also known as Killsec, has claimed to have published sensitive data allegedly belonging to Betterhalf.ai on their dark web onion site. The alleged data breach, involving a large amount of personal and sensitive information, raises potential privacy and security concerns for the individuals affected.
Betterhalf.ai, or ‘The Wedding Company,’ is the leading end-to-end wedding planning service provider in India, providing couples with full wedding planning options. The company provides individualised, stress-free wedding experiences that cater to the particular needs of each couple by utilising its broad network of partners and industry expertise.
The researchers uncovered the breach on October 5, 2024, while actively monitoring Killsec’s dark web activities. Betterhalf.ai’s data appeared on the group’s Onion website, although the exact date of the attack remains unknown. Killsec’s post about the breach did not specify the ransom amount, and there is no confirmation whether the company has paid or plans to pay the ransom. It is important to note that this incident remains an allegation and has not been confirmed by the victim company.
A massive amount of critical data from Betterhalf.ai had allegedly been compromised.
While the volume of the compromised data has not been disclosed, iZOOlogic researchers found that the alleged breach claimed by the Killsec threat group involves a wide array of sensitive details. The leaked data includes personal and family information, educational and employment records, medical details, government-issued documents, financial records, caste and religious information, astrological details, vaccination records, and identity numbers. If the claims of the threat actors are true, this extensive range of exposed information puts the affected individuals at risk of identity theft, financial fraud, and other forms of exploitation.
The situation is still developing, and while the case remains unconfirmed, recent updates indicate that the allegedly compromised Betterhalf.ai data is now being offered for sale on the dark web for $5,000.
It is still unclear how Killsec might have broken into Betterhalf.ai’s systems if their claims are true. Our iZOOlogic researchers speculate that the threat actors may have used ransomware, phishing scams, or system flaws to obtain unauthorised access to the private data of the company. These attacks demonstrate the ways in which ransomware groups such as Killsec are targeting not only people but also major organisations due to the sensitivity and scope of the compromised data.
iZOOlogic security researchers continue to monitor the situation closely and emphasise the importance of organisations strengthening their cyber defence strategies to prevent such attacks. As ransomware groups grow more sophisticated, organisations must remain cautious against potential vulnerabilities and continuously improve their security measures to defend against cyberattacks.
