alphv attacks Simex Defence Inc

Incident Date:

October 2, 2022

World map

Overview

Title

alphv attacks Simex Defence Inc

Victim

Simex Defence Inc

Attacker

Alphv

Location

, Canada

Quebec, Canada

First Reported

October 2, 2022

Simex Defence Inc. Suffers Ransomware Attack by Alphv Group

Simex Defence Inc., a Montreal-based military contractor, has been targeted by the Alphv ransomware group, according to a post on the group's dark web leak site. The company, which has been in operation for 28 years, provides customized sales and supply chain services to various sectors, including national security, manufacturing, and energy.

The Alphv ransomware group, also known as BlackCat, has been active since November 18, 2021, and can encrypt files using either the AES or ChaCha20 algorithm. The group operates as a "ransomware-as-a-service" (RaaS), allowing affiliates to initially hack victim organizations before deploying the malware.

Simex Defence Inc. has not disclosed any information about the impact of the attack, but the company has reported the incident to the police and is implementing stricter policies to prevent future attacks. The Alphv group has targeted other organizations, including NJVC, an IT company supporting the US federal government and Department of Defense.

The ransomware attack on Simex Defence Inc. highlights the need for organizations to strengthen their cybersecurity measures to protect against such threats. The company's website provides information about their products and services, but does not reveal specific details about the size of the company or its vulnerabilities.

Sources

  • Simex Defence Inc. - Front Page
  • Alphv details - RansomLook
  • Ransomware gang claims responsibility for attack on defence contractor
  • The State of Ransomware in 2022 - BlackFog
  • Ransomware Posts - GitHub Pages

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.