While Microchip has not provided any comment regarding the claims, Play’s admission a full week after the company’s breach disclosure to the Securities and Exchange Commission reveals an extension from the 72-hour deadline given for a ransom payment, according to Adlumin cybersecurity researcher Kevin O’Connor. “It’s not that unusual for ransomware gangs to go beyond the threatened release period, but it suggests that negotiations may have been taking place,”

Source: SC Magazine