After congratulating SpaceX and NASA on their first crewed rocket launch, the operators of the DopplePaymer ransomware followed up with an announcement that they have “kidnapped” the data of Maryland-based Digital Management Inc., one of NASA’s IT contractors. They posted credible examples of NASA-related data as evidence, but it is unclear how far they penetrated DMI’s systems. The group also posted a list of 2,583 servers and workstations they claim are now-encrypted components of DMI’s internal network.
