blackbasta attacks Capsonic

Incident Date:

July 3, 2022

World map



blackbasta attacks Capsonic






Elgin, USA

Illinois, USA

First Reported

July 3, 2022

Capsonic Suffers Ransomware Attack by BlackBasta Group

Capsonic, a trusted manufacturing partner in the Automotive and Aerospace industries, has been targeted by the ransomware group BlackBasta. The attack was announced on the group's dark web leak site. Capsonic operates in the Manufacturing sector and is renowned for its expertise in Insert Molding, Electromechanical Assembly, and Design for Manufacturability (DFM).

Capsonic's website offers insights into the company's capabilities and services, highlighting its commitment to quality and its certifications in Automotive IATF 16949, Aerospace AS9100, International ISO 9001, Environmental ISO 14001, Process NADCAP, Military Export – ITAR, Homeland Security – C-TPAT certified, Minority – NMSDC, CMBDC, Veteran owned – NVBDC, and its dedication to customer excellence.

The company's sectors include Insert Molding, Assembly, and DFM, with a focus on creating complex products more easily and efficiently. Capsonic's vertical integration includes suppliers, and it has locations in Texas and Mexico.

The Broader Trend of Cyber Threats Against the Manufacturing Sector

The ransomware attack on Capsonic is indicative of a broader trend of cyber threats against the manufacturing sector. In 2023, ransomware victim numbers rose by 50%, with 25 new groups emerging, though some had a short lifespan until they disbanded or rebranded. This attack on Capsonic underscores the critical need for companies to remain vigilant against cyber threats and to implement robust cybersecurity measures.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.