alphv attacks eNoah it solutions

Incident Date:

April 15, 2022

World map



alphv attacks eNoah it solutions


eNoah it solutions




Chennai, India

Tamil Nadu, India

First Reported

April 15, 2022

eNoah iSolution Targeted by ALPHV Ransomware Group

Company Overview

eNoah iSolution has decades of experience in business management and process enhancement across various industries, including insurance, mutual funds, automotive, and travel. The company is compliant with ISO, 6-Sigma, SOX, 5S, HIPAA, and SAS 70 requirements, and it specializes in high-end research. eNoah is an ISO 27001 certified company with 17+ years of experience in IT and Business Support Services.

Vulnerabilities and Targeting

The attack on eNoah iSolution highlights the need for robust cybersecurity measures to protect against ransomware attacks. ALPHV Blackcat affiliates have been known to target healthcare organizations, exploiting vulnerabilities in Windows operating systems, servers, exchange servers, and Secure Mobile Access products. The group has also been observed using methods such as SQL injection and privilege escalation to gain access to victim networks.

Mitigation Strategies

To mitigate the risk of ransomware attacks, organizations should routinely take inventory of assets and data, prioritize remediation of known exploited vulnerabilities, enable and enforce multifactor authentication, close unused ports, and remove unnecessary applications. Additionally, organizations should be aware of the tactics, techniques, and procedures (TTPs) used by ransomware groups like ALPHV Blackcat, such as data exfiltration and encryption for impact.

The attack on eNoah iSolution serves as a reminder of the importance of robust cybersecurity measures to protect against ransomware attacks. Organizations should be vigilant in identifying and addressing vulnerabilities in their systems and implement best practices to mitigate the risk of ransomware attacks.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.