Big Green Egg Hit by RansomHub Ransomware, 56GB Data Encrypted
Incident Date:
July 31, 2024
Overview
Title
Big Green Egg Hit by RansomHub Ransomware, 56GB Data Encrypted
Victim
Big Green Egg
Attacker
Ransomhub
Location
First Reported
July 31, 2024
RansomHub Ransomware Attack on Big Green Egg
Big Green Egg, a prominent manufacturer of high-quality ceramic kamado-style cookers, has recently fallen victim to a ransomware attack orchestrated by the cybercriminal group known as RansomHub. The attack has resulted in the encryption of 56GB of the company's data, posing significant operational and financial risks.
About Big Green Egg
Founded in 1974 by Ed Fisher, Big Green Egg, Inc. is headquartered in Atlanta, Georgia. The company is renowned for its versatile and easy-to-use outdoor cookers, which are fueled by natural lump charcoal. These cookers are celebrated for their superior heat retention and distribution, allowing for precise temperature control. Big Green Egg has cultivated a strong community of enthusiasts, known as "EGGheads," and offers a range of accessories to enhance the cooking experience.
Attack Overview
The ransomware attack on Big Green Egg was claimed by RansomHub via their dark web leak site. The attackers successfully encrypted 56GB of the company's data, rendering it inaccessible. This breach likely includes critical business information, forcing the company to decide whether to pay the ransom or seek alternative recovery methods. The attack underscores the vulnerabilities that even well-established companies face in the evolving cyber threat landscape.
About RansomHub
RansomHub is a relatively new ransomware group believed to have roots in Russia. Operating as a Ransomware-as-a-Service (RaaS) group, RansomHub distinguishes itself by making claims and backing them up with data leaks. Affiliates receive 90% of the ransom money, with the remaining 10% going to the main group. The group's ransomware strains are written in Golang, a language choice that aligns with recent trends in the ransomware world.
Potential Vulnerabilities
While specific details about how RansomHub penetrated Big Green Egg's systems are not publicly available, common vulnerabilities exploited by ransomware groups include weak passwords, unpatched software, and phishing attacks. The use of Golang by RansomHub may also indicate sophisticated techniques that can bypass traditional security measures.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.