bianlian attacks ISGEC Heavy Engineering

Incident Date:

July 16, 2022

World map



bianlian attacks ISGEC Heavy Engineering


ISGEC Heavy Engineering




Yamuna Nagar, India

Haryana, India

First Reported

July 16, 2022

ISGEC Heavy Engineering Suffers Ransomware Attack

Company Overview

ISGEC Heavy Engineering Ltd. is a leading provider of engineering solutions, with a diverse range of products, projects, and services catering to various critical sectors. The company has offices in Noida, India, and its servers are located at both Sector 24 and Sector-63 of Noida.

Vulnerabilities and Impact

The ransomware attack on ISGEC Heavy Engineering resulted in the encryption of their data, causing significant losses and the risk of misuse or loss of valuable information. The company's IT team and external experts were unable to find a solution to the problem, leading them to contact the police for assistance.

Response and Investigation

The Noida police have registered an FIR and initiated an investigation, with the assistance of CERT-IN and forensic analysis of the computer system to ascertain the source of the malware.

The ransomware attack on ISGEC Heavy Engineering highlights the increasing threat of cyber attacks on companies worldwide. Despite the efforts of IT teams and external experts, the attack caused significant disruption and financial losses to the company. The incident underscores the importance of robust cybersecurity measures and regular backups to mitigate the impact of such attacks.


  • ISGEC Heavy Engineering
  • ISGEC Data Breach in 2022 - Breachsense
  • ISGEC Heavy Engineering Limited data is Encrypted by Hackers and They Demand Bitcoin to Decrypt It
  • ISGEC Heavy Engineering: Clarification Regarding News Item

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.