Based on reporting by databreaches.net, the attack appears to be have been orchestrated by the well-known and highly (criminally) profitable BianLian ransomware group.
Ransomware is a specialized attack where sensitive data is encrypted and held hostage by the attacker until a "ransom" is paid. Due to the nature of the encryption, threat of exposure, expensive last-minute cybersecurity assistance, and significant legal complications, most victim organizations opt to pay the ransom to resume business as quickly as possible.
“Our business depends on the reputation even more than many others. If we will take (the) money and spread your information- we will have issues with payments in (the) future. So, we will stick to our promises and reputation. That works in both ways: if we said that we will email all your staff and publicly spread all your data- we will.”
-- BianLian, via Redacted
Over the past 10 or so years, ransomware entry points have evolved from direct entry into corporate networks to much more sophisticated entry through compromised personal systems of executives and VIPs.
This evolution of cybercriminals' entry points highlights the importance of personal security and general cyberawareness. Check out our 7 Tips for Cybersecurity and please contact us at any time to review your organization's security protocols or lead training sessions for your team.
Additionally, review this checklist, provided by the CISA.
"Amateurs hack systems; professionals hack people."