Ransomware operation ALPHV/BlackCat has admitted having exfiltrated 80GB of data from a February cyberattack against Reddit and has threatened to leak the stolen data, according to BleepingComputer.
Reddit previously confirmed the theft of its internal files, source code, employee information, and limited advertiser data as a result of the attack, which stemmed from a phishing attack against an employee, with the company noted by ALPHV/BlackCat to have been contacted twice.
However, Reddit did not respond to ALPHV/BlackCat's demand of $4.5 million for the deletion of the stolen data.
"I told them in my first email that I would wait for their IPO to come along. But this seems like the perfect opportunity! We are very confident that Reddit will not pay any money for their data. But I am very happy to know that the public will be able to read about all the statistics they track about their users and all the interesting confidential data we took. Did you know they also silently censor users? Along with artifacts from their GitHub!" said ALPHV/BlackCat on its data leak site.