alphv attacks Bandai Namco
Incident Date:
July 11, 2022
Overview
Title
alphv attacks Bandai Namco
Victim
Bandai Namco
Attacker
Alphv
Location
First Reported
July 11, 2022
Bandai Namco Suffers Ransomware Attack by ALPHV/Blackcat Group
Company Overview
Bandai Namco Holdings Inc., established in Tokyo, Japan, in 2006, aims to enhance its competitive edge in the global market and foster new synergies across its diverse divisions. These include Bandai Namco Toys & Collectibles America Inc., Bandai Namco Entertainment America Inc., Bandai Namco Amusement America Inc., BANDAI CORPORACION MEXICO, S.A. de C.V., and Bandai Namco Entertainment Brazil Ltd.
Vulnerabilities and Impact
The ALPHV/Blackcat ransomware group, known for its widespread attacks, has compromised over 1,000 entities, with a significant majority of these victims based in the United States. The group has amassed nearly $300 million in ransom payments. The recent attack on Bandai Namco represents a broader disruption effort, which includes the FBI's seizure of the group's website and the release of a decryption tool to aid victims in system recovery.
This attack on Bandai Namco has considerable implications, disrupting operations and potentially leading to the exposure of sensitive data. The company is advised to seek assistance from their local FBI field office.
Mitigation Strategies
Organizations are recommended to adopt several strategies to mitigate the risk of ransomware attacks. These include conducting regular inventories of assets and data, prioritizing the remediation of known exploited vulnerabilities, implementing and enforcing multifactor authentication with robust passwords, and eliminating unused ports along with unnecessary applications.
The ransomware attack on Bandai Namco by the ALPHV/Blackcat group underscores the persistent cybercrime threat facing the Media & Internet sector. It is imperative for companies to continually enhance their cybersecurity practices to safeguard their operations and sensitive information.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.