blackbasta attacks TRM - Tiroler Pipe Co., Ltd

Incident Date:

June 10, 2022

World map



blackbasta attacks TRM - Tiroler Pipe Co., Ltd


TRM - Tiroler Pipe Co., Ltd




Innsbrucker, Austria

Tirol, Austria

First Reported

June 10, 2022

TRM - Tiroler Pipe Co., Ltd. Suffers Ransomware Attack

TRM - Tiroler Pipe Co., Ltd., a leading manufacturer of ductile iron pipes and fittings, has been targeted by the ransomware group BlackBasta. The attack was announced on the group's dark web leak site, and the victim's website is currently under scrutiny. TRM operates in the manufacturing sector and is renowned for its innovative products and commitment to sustainability.

Company Overview

Founded in 1947 by Guido Holzmeister, the son of the esteemed Tiroler Architekt Clemens Holzmeister, TRM has a storied history of innovation. This includes the introduction of the TYTON - Steckmuffenverbinung in 1955 and the längs- und zugkraftschlüssige Verbindung VRS-T in 1975. As a member of the European Association of Ductile Iron Pipe Systems (EADIPS), TRM actively supports initiatives focused on soil and water protection.

Vulnerabilities and Impact

The ransomware attack on TRM underscores the escalating threat of such cyber incidents to businesses across various sectors. Although the specific vulnerabilities exploited by BlackBasta in this instance remain undisclosed, ransomware attacks commonly leverage gaps in outdated software, unpatched systems, or weak passwords. The repercussions for TRM could be severe, encompassing data loss, operational downtime, and potential reputational damage.

Response and Mitigation

As of now, TRM has not released any public statements regarding the attack or outlined their response strategy. Nonetheless, it is imperative for organizations to implement comprehensive cybersecurity protocols. These should include regular software updates, extensive employee training, and the development of incident response strategies. In the face of a ransomware attack, capitulating to ransom demands is ill-advised, given the lack of assurance that the perpetrators will fulfill their promises.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.