alphv attacks Alexandria International Airport

Incident Date:

June 2, 2022

World map



alphv attacks Alexandria International Airport


Alexandria International Airport




Alexandria, USA

Louisiana, USA

First Reported

June 2, 2022

Alexandria International Airport Targeted by Alphv Ransomware Group

Alexandria International Airport in Louisiana has been targeted by the Alphv ransomware group, as confirmed by a post on the group's dark web leak site. The airport, which operates in the Transportation sector, is a 50,000-person city located about two hours outside of Baton Rouge.

Alphv, also known as BlackCat, is a rebranded version of the BlackMatter and DarkSide ransomware groups. The group is known for its aggressive tactics, including threatening victims directly and attempting to silence media outlets. Alphv has been involved in at least 60 ransomware attacks as of March 2023.

The airport's vulnerabilities leading to this attack are not explicitly stated in the search results. However, it is mentioned that the group has been targeting various sectors, including energy, airline technology, automotive, and education. The attack on Alexandria International Airport is the 22nd reported incident for this year.

The Alphv ransomware group demands ransom payments in Monero or Bitcoins, with ransom demands ranging from $400,000 to $3 million USD. The group uses a variety of tactics, including data encryption, service stoppage, and inhibition of system recovery.

The investigation into the attack is ongoing, with state and federal agencies involved. The airport's website provides information about the airport's operations and history.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.