blackbasta attacks Etna GmbH

Incident Date:

September 27, 2022

World map



blackbasta attacks Etna GmbH


Etna GmbH




Frankfurt, Germany

Frankfurt, Germany

First Reported

September 27, 2022

Ransomware Attack on Etna GmbH

Etna GmbH, a German company operating in the manufacturing sector, has been targeted by the ransomware group BlackBasta. The attack was confirmed through a leak on the group's dark web site, which also revealed that the victim's website is

Etna GmbH specializes in Gebäudemanagement, Luft- und Klimatechnik, Reinraumtechnik, and etna PROTECT. The company's website offers insights into their history, quality, and environmental efforts, alongside their services and news. However, details regarding the company's size or specific vulnerabilities that led to the ransomware attack remain undisclosed.

Ransomware attacks on industrial and manufacturing entities are on the rise, with notable companies like Thyssenkrupp and Lürssen also recently affected. These incidents often involve entities with substantial operations and a significant online presence, rendering them attractive targets for cybercriminals.

The particulars of the ransomware attack on Etna GmbH, including the ransomware variant used and the full extent of the damage, have not been made public. Nonetheless, it is evident that the company has suffered a ransomware attack, underscoring the urgency for them to implement measures to mitigate the damage and avert future incidents.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.