blackbyte attacks Costas Xyydias S.A

Incident Date:

May 12, 2022

World map



blackbyte attacks Costas Xyydias S.A


Costas Xyydias S.A




, Greece

Athina, Greece

First Reported

May 12, 2022

Costas Xydias S.A. Ransomware Attack

Costas Xydias S.A., a pharmaceutical distributor based in Athens, Greece, has been targeted by the ransomware group Blackbyte. The attack was announced on the group's dark web leak site, and the victim's website was identified as the target. The company operates in the Healthcare Services sector and has been in operation for over 30 years, establishing itself as a well-organized and functional distribution network.

Company Profile

Costas Xydias S.A. was founded in 1983 by Costas Xydias and has been a pharmaceutical wholesaler for over three decades. The company has maintained its oligogeneic character, becoming one of the healthiest, contemporary, and successful businesses in Greece, with a long-term commitment to collaborating with major companies in Greece and abroad.

Distribution Network

With over 30 years of experience, Costas Xydias S.A. has developed a well-organized and functional distribution network, ensuring quality, reliability, and immediate support for its customers. The company's distribution network covers all of Greece, offering a vast range of products with high quality.


The specific vulnerabilities that led to the ransomware attack on Costas Xydias S.A. are not mentioned in the search results. However, it is known that ransomware attacks often exploit weak passwords, credential reuse, and easily guessed passwords.

Response and Mitigation

The search results do not provide information on the company's response to the ransomware attack or any mitigation strategies employed. It is recommended that companies facing such attacks seek professional assistance from cybersecurity experts to assess the damage and implement appropriate measures to prevent future attacks.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.