blackbasta attacks Allports Group

Incident Date:

May 24, 2022

World map



blackbasta attacks Allports Group


Allports Group




Fradley, United Kingdom

Lichfield, United Kingdom

First Reported

May 24, 2022

Allports Group Suffers Ransomware Attack by Black Basta

Allports Group, a prominent dealer of Renault Trucks and Isuzu Trucks based in the Midlands, UK, has recently fallen victim to a ransomware attack orchestrated by the notorious Black Basta group. The incident was disclosed on the dark web leak site associated with the cybercriminals. Founded in 1959, Allports Group has been a key player in the UK's commercial vehicle sector, offering a wide range of services including authorized dealership for Renault Trucks and Isuzu Trucks, rental and contract hire, bodywork repair, and plant center services.

The company's official website, which provides detailed information about their offerings, was caught in the crosshairs of this cyberattack. Despite the lack of public details regarding the company's size and potential vulnerabilities, it is clear that Allports Group has joined the growing list of ransomware targets.

Ransomware attacks typically leverage weaknesses in remote access systems, such as the Remote Desktop Protocol (RDP), known for its complex security setup. These systems present lucrative opportunities for cybercriminals. To counteract these threats, organizations are advised to transition to more secure remote access solutions and adhere to cybersecurity best practices. This includes regular software updates, the implementation of multifactor authentication, and rigorous backup testing protocols.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.