bianlian attacks Seanic

Incident Date:

October 4, 2022

World map

Overview

Title

bianlian attacks Seanic

Victim

Seanic

Attacker

Bianlian

Location

Katy, USA

Texas, USA

First Reported

October 4, 2022

Ransomware Attack on Seanic USA

Company Overview

Seanic USA, a key player in the Energy, Utilities & Waste sector, specializes in providing subsea services. Their offerings encompass a wide array of products and services tailored for the oil and gas industry, including ROV tooling packages, diver tools, cutting and decommissioning equipment, deck cranes, winches, power packs, tensioners, spoolers, survey and deployment equipment, along with associated ancillaries.

Company Size and Industry Standout

As a significant entity in the subsea services domain, Seanic USA delivers integrated services designed to meet the complex subsea operational needs of major oil operators and service companies.

Vulnerabilities

The precise vulnerabilities exploited in the attack on Seanic USA remain undisclosed. Nonetheless, ransomware attacks typically leverage flaws such as outdated software, unpatched systems, or weak passwords. It underscores the importance for organizations to implement comprehensive cybersecurity practices, which should include regular software updates, the enforcement of strong password policies, and the provision of employee training on cybersecurity awareness.

Ransomware Group

The Bianlian ransomware group, known for its involvement in Ransomware as a Service (RaaS) operations, has claimed responsibility for the attack on Seanic USA. This group has established itself as an active participant in the cybercrime arena, focusing on deploying ransomware attacks.

The incident with Seanic USA serves as a stark reminder of the persistent cybercrime threats facing the Energy, Utilities & Waste sector. It is imperative for companies within this industry to adopt and maintain stringent cybersecurity protocols to fend off such malicious activities.

Sources

  • Centurion Subsea Services: Home | ROV Intervention Tooling
  • RansomLook: Groups profiles - RansomLook
  • Ransomwatch: Ransomware Posts - GitHub Pages
  • CNN: Ransomware attack affects the websites of 5000 schools - CNN
  • NBC News: Ransomware attack, Covid combine to shutter Illinois college - NBC News

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.