blackbasta attacks EMEinc.
Incident Date:
September 7, 2022
Overview
Title
blackbasta attacks EMEinc.
Victim
EMEinc.
Attacker
Blackbasta
Location
First Reported
September 7, 2022
EME Plating, a Manufacturing Company, Suffers Ransomware Attack by Blackbasta
EME Plating, operating within the Manufacturing sector, has recently fallen victim to a ransomware attack orchestrated by the Blackbasta group. This incident was disclosed on the group's dark web leak site, highlighting the company's website at https://emeplating.com/. Renowned for its commitment to quality and customer satisfaction, EME Plating has garnered a reputation through referrals, underpinned by its Nadcap, AS9100, and ITAR certifications.
Despite the absence of explicit details regarding the company's size, EME Plating's website presents a broad spectrum of services, including non-destructive testing, chemical processing, and painting & spray coating. This diversity positions EME Plating as a versatile entity within the manufacturing domain.
The specific vulnerabilities that made EME Plating a target for cybercriminals remain undisclosed. Nonetheless, a notable absence of information on cybersecurity measures on the company's website may have inadvertently increased its risk profile against cyber threats.
Blackbasta is notorious for its dual-extortion tactics, involving data theft followed by ransom demands for data decryption and non-disclosure. High-profile entities such as MGM Resorts International and Caesars Entertainment have previously been targeted by this group.
To date, EME Plating has not publicly addressed the ransomware attack nor detailed any remedial actions undertaken in response to the breach. The company's silence on these matters does not provide any reassurance or insights into their cybersecurity posture or incident response strategy.
Sources
- EME Plating Official Website
- Reuters: Report: Ransomware attack on Minn. healthcare group disrupts prescription orders nationwide
- CalMatters: CA doctors face uncertainty after Change Health Care cyber attack
- CISA: I've Been Hit By Ransomware!
- CBS: Ransomware attack in Colorado exposed personal information, say officials
- HIPAA Journal: New Ransomware Group Claims to Have Data from Change Healthcare Ransomware Attack
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.