The following notice was posted June 3 on Facebook.ย As of publication, there is no notice on their website, and although AMI indicates that APT73 is responsible for the attack, there is nothing on Bashe’s leak site or any other leak site.ย
๐จ๐ฅ๐๐๐ก๐ง ๐ฃ๐จ๐๐๐๐ ๐ก๐ข๐ง๐๐๐ โ ๐๐ฌ๐๐๐ฅ๐ฆ๐๐๐จ๐ฅ๐๐ง๐ฌ ๐๐๐๐ฅ๐ง ๐ง๐ผ ๐ผ๐๐ฟ ๐๐ฎ๐น๐๐ฒ๐ฑ ๐ฐ๐น๐ถ๐ฒ๐ป๐๐, ๐ฝ๐ฎ๐ฟ๐๐ป๐ฒ๐ฟ๐, ๐๐๐ฎ๐ธ๐ฒ๐ต๐ผ๐น๐ฑ๐ฒ๐ฟ๐, ๐ฎ๐ป๐ฑ ๐๐ต๐ฒ ๐ถ๐ป๐๐ฒ๐ฟ๐ป๐ฎ๐๐ถ๐ผ๐ป๐ฎ๐น ๐ฝ๐๐ฏ๐น๐ถ๐ฐ:
It is our corporate responsibility to inform you that ๐๐ ๐ ๐๐ฟ๐ผ๐๐ฝ ๐ผ๐ณ ๐๐ผ๐บ๐ฝ๐ฎ๐ป๐ถ๐ฒ๐ has been identified as a target of a sophisticated ๐ฟ๐ฎ๐ป๐๐ผ๐บ๐๐ฎ๐ฟ๐ฒ ๐ฐ๐๐ฏ๐ฒ๐ฟ๐ฎ๐๐๐ฎ๐ฐ๐ธ orchestrated by a known international threat group (๐๐ฃ๐ง๐ณ๐ฏ).
This was not a minor breach. This is a high-level cyber threat and this incident was officially brought to our attention by the ๐จ๐ป๐ถ๐๐ฒ๐ฑ ๐ฆ๐๐ฎ๐๐ฒ๐ ๐๐ฒ๐ฑ๐ฒ๐ฟ๐ฎ๐น ๐๐๐ฟ๐ฒ๐ฎ๐ ๐ผ๐ณ ๐๐ป๐๐ฒ๐๐๐ถ๐ด๐ฎ๐๐ถ๐ผ๐ป (๐๐๐), ๐๐๐ฏ๐ฒ๐ฟ ๐ง๐ฎ๐๐ธ ๐๐ผ๐ฟ๐ฐ๐ฒ โ ๐ฃ๐ต๐ถ๐น๐ฎ๐ฑ๐ฒ๐น๐ฝ๐ต๐ถ๐ฎ ๐๐ถ๐ฒ๐น๐ฑ ๐ข๐ณ๐ณ๐ถ๐ฐ๐ฒ, who made direct contact with us this morning. The ๐๐๐ has confirmed that our company was listed on a ransomware groupโs threat site, leading them to formally recognize ๐๐ ๐ ๐๐ฟ๐ผ๐๐ฝ ๐ผ๐ณ ๐๐ผ๐บ๐ฝ๐ฎ๐ป๐ถ๐ฒ๐ as a victim of a high-level cyber incident.
๐๐บ๐ฝ๐ผ๐ฟ๐๐ฎ๐ป๐ ๐๐ฎ๐ฐ๐๐ ๐ฌ๐ผ๐ ๐ฆ๐ต๐ผ๐๐น๐ฑ ๐๐ป๐ผ๐:
No ransom has been demanded or paid as of this notice.The incident exclusively affects our upcoming digital platforms, including newly launched websites, systems, and servers, scheduled to go live on ๐๐๐น๐ ๐ญ๐๐, ๐ฎ๐ฌ๐ฎ๐ฑ.Our current and existing platforms, portals, and client systems remain fully operational, unaffected, and secure.All AMI Group of Companies servers and data infrastructure are based in the United States, secured under stringent data protection protocols.All core business services remain uninterrupted across all divisions and regions.
๐ช๐ต๐ ๐ช๐ฎ๐ ๐๐ ๐ ๐๐ฟ๐ผ๐๐ฝ ๐ผ๐ณ ๐๐ผ๐บ๐ฝ๐ฎ๐ป๐ถ๐ฒ๐ ๐ง๐ฎ๐ฟ๐ด๐ฒ๐๐ฒ๐ฑ?As one of the fastest-growing multinational conglomerates in the worldโoperating across Financial Services, Engineering, Travel, Education, Immigration, Property, Staffing, and AIโour global digital presence makes us a prime target for highly coordinated cyber threats.
The FBI’s immediate involvement speaks volumes of the scale, influence, and operational depth of ๐๐ ๐ ๐๐ฟ๐ผ๐๐ฝ ๐ผ๐ณ ๐๐ผ๐บ๐ฝ๐ฎ๐ป๐ถ๐ฒ๐ . In collaboration with our internal ๐๐ป๐ณ๐ผ๐ฟ๐บ๐ฎ๐๐ถ๐ผ๐ป ๐ง๐ฒ๐ฐ๐ต๐ป๐ผ๐น๐ผ๐ด๐ ๐ฎ๐ป๐ฑ ๐๐ฟ๐ฐ๐ต๐ถ๐๐ฒ๐ฐ๐๐๐ฟ๐ฒ (๐๐ง๐) ๐๐ถ๐๐ถ๐๐ถ๐ผ๐ป, the FBI has already begun issuing expert directives to strengthen our cyber posture and assist in the investigation.
๐ ๐๐ฟ๐ถ๐๐ถ๐ฐ๐ฎ๐น ๐๐ถ๐๐๐ถ๐ป๐ฐ๐๐ถ๐ผ๐ป:This cybersecurity event does not affect our live operations, and none of our current clients, partners, or platforms have experienced disruption or data loss. The incident targets only the systems scheduled for public rollout in July, which remain isolated from existing infrastructure.
Due to the severity of the threat and the sensitive nature of the ongoing investigation, we are unable to disclose full technical details at this time. However, rest assured that we are taking every measure in alignment with both federal guidance and internal cyber defense protocols to contain and eliminate the threat.
๐ ๐๐ถ๐ป๐ฎ๐น ๐ช๐ผ๐ฟ๐ฑ ๐๐ผ ๐ข๐๐ฟ ๐๐น๐ถ๐ฒ๐ป๐๐ ๐ฎ๐ป๐ฑ ๐๐ต๐ฒ ๐ฃ๐๐ฏ๐น๐ถ๐ฐ:Cybersecurity is the backbone of trust in this digital age. Though this was an attempted breach of our upcoming systems, our response is immediate, coordinated, and reinforced with the backing of federal authorities.
We deeply appreciate your trust, and we are committed to keeping you informed as the situation evolves.
โ ๐ง๐ต๐ฒ ๐๐
๐ฒ๐ฐ๐๐๐ถ๐๐ฒ ๐ ๐ฎ๐ป๐ฎ๐ด๐ฒ๐บ๐ฒ๐ป๐
AMI Group of Companies โ Global Headquarters
