Ada Chikan's Cyber Nightmare: DarkVault Ransomware Attack
Incident Date:
April 11, 2024
Overview
Title
Ada Chikan's Cyber Nightmare: DarkVault Ransomware Attack
Victim
Ada Chikan
Attacker
DarkVault
Location
First Reported
April 11, 2024
Ransomware Attack on Ada Chikan by DarkVault
Victim Profile
Ada Chikan, a company specializing in handcrafted Lucknow Chikankari products, operates in the Retail sector. They are known for their high-quality and wide variety of colors and designs, which are unparalleled in the chikankari work industry. The company has a global presence, delivering products to over 10,000 pin codes within India and to over 60 countries worldwide. They are associated with over 30,000 artisans and are committed to supporting women artisans for self-reliance and financial independence.
Company Size and Standing
The designer company has 306 employees and an estimated revenue between 2M - 5M. The company's worth is estimated to be US$ 191,460, and they receive approximately 8,529 unique visitors to their website each day. Ada Chikan's flagship store spans over 20,000 square feet, offering a wide range of products across categories, creating a royal Awadhi feel for customers.
Attack
The attacker, known as "DarkVault," employed a ransomware attack on Ada Chikan. The attack resulted in the exfiltration of 1 GB of data, but the specific type of data exfiltrated is not mentioned. The data breach occurred with a ransom deadline set for March 25, 2024. Due to the severity of the incident, the Cyber Risk Factor is assessed as very high.
Vulnerabilities
Ada Chikan's unique position in the chikankari industry, with a large number of artisans and a diverse product range, makes them a target for threat actors like DarkVault. The company's global presence and online store may have exposed them to cyber threats, leading to the recent ransomware attack claimed by DarkVault. The company's commitment to supporting women artisans may also make them vulnerable to attacks aimed at disrupting their operations and financial stability.
Sources:
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.