alphv attacks Alexandria International Airport
Incident Date:
June 2, 2022
Overview
Title
alphv attacks Alexandria International Airport
Victim
Alexandria International Airport
Attacker
Alphv
Location
First Reported
June 2, 2022
Alexandria International Airport Targeted by Alphv Ransomware Group
Alexandria International Airport in Louisiana has been targeted by the Alphv ransomware group, as confirmed by a post on the group's dark web leak site. The airport, which operates in the Transportation sector, is a 50,000-person city located about two hours outside of Baton Rouge.
Alphv, also known as BlackCat, is a rebranded version of the BlackMatter and DarkSide ransomware groups. The group is known for its aggressive tactics, including threatening victims directly and attempting to silence media outlets. Alphv has been involved in at least 60 ransomware attacks as of March 2023.
The airport's vulnerabilities leading to this attack are not explicitly stated in the search results. However, it is mentioned that the group has been targeting various sectors, including energy, airline technology, automotive, and education. The attack on Alexandria International Airport is the 22nd reported incident for this year.
The Alphv ransomware group demands ransom payments in Monero or Bitcoins, with ransom demands ranging from $400,000 to $3 million USD. The group uses a variety of tactics, including data encryption, service stoppage, and inhibition of system recovery.
The investigation into the attack is ongoing, with state and federal agencies involved. The airport's website provides information about the airport's operations and history.
Sources
- Alexandria Airport - Wikipedia
- Louisiana authorities investigating ransomware attack on city of Alexandria
- City of Alexandria investigating system hack - KALB
- All About BlackCat (AlphaV) Ransomware - Securin
- Ransomware attack at La. city under investigation | SC Media
- Blackcat Ransomware Hits Alexandria, Louisiana - Anvilogic
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.