Arkana Ransomware Group Hacks WideOpenWest Using Data from an Infostealer Infection

Hudson Rock reports that the Arkana ransomware group exploited an infostealer infection on a WideOpenWest employee in September 2024 to steal credentials for wowinc.symphonica.com, wowway.com, and appiancloud.com, gaining access to Symphonica and AppianCloud systems, exfiltrating data and claiming control of over 403,000 customer accounts; Arkana is using the data to extort WOW! and even published a video demonstrating access. The report recommends strengthened infostealer monitoring, EDR deployment, prompt credential resets, MFA, and network segmentation to prevent similar incidents.