CobelPlast Ransomware Attack by Hunters International Exposed
Incident Date:
October 4, 2024
Overview
Title
CobelPlast Ransomware Attack by Hunters International Exposed
Victim
CobelPlast
Attacker
Hunters International
Location
First Reported
October 4, 2024
Ransomware Attack on CobelPlast: A Closer Look at the Hunters International Breach
CobelPlast, a well-established Belgian company in the extrusion industry, has recently fallen victim to a ransomware attack by the notorious group Hunters International. This incident underscores the persistent threat ransomware poses to the manufacturing sector, which often harbors valuable proprietary and operational data.
About CobelPlast
Founded in 1957 and headquartered in Lokeren, Belgium, CobelPlast is a key player in the production of co-extruded multi-layer barrier sheets made from polystyrene and polypropylene. These products are primarily used in the food packaging industry, catering to a wide range of items such as baby foods, dairy products, and ready meals. The company employs approximately 100 full-time staff and reported a turnover of €45,631,648 as of June 2024. CobelPlast's commitment to quality and innovation has positioned it as a leader in its field, with a strong focus on expanding its market reach, particularly in Asia.
Details of the Attack
Hunters International claims to have exfiltrated 27.7 GB of data from CobelPlast's systems. The breach highlights the vulnerabilities that manufacturing companies face, particularly those with valuable intellectual property and sensitive operational data. The extent of the data compromised and its potential impact on CobelPlast's operations and data privacy obligations are significant concerns as the company addresses the aftermath of this cyber intrusion.
Profile of Hunters International
Emerging in late 2023, Hunters International is a ransomware group known for its sophisticated operations and data leak strategies. Operating as a Ransomware-as-a-Service provider, the group prioritizes data exfiltration over encryption, leveraging stolen data to pressure victims into paying ransoms. Their ransomware employs advanced encryption techniques and is written in Rust, enhancing its performance and security. The group is believed to have origins in Eastern Europe, complicating law enforcement efforts to disrupt their activities.
Potential Vulnerabilities and Penetration Tactics
Hunters International employs a range of tactics to infiltrate organizations, including phishing, exploiting vulnerabilities in public-facing applications, and social engineering. CobelPlast, like many manufacturing companies, may have been targeted due to its valuable data and potential vulnerabilities in its cybersecurity infrastructure. The attack on CobelPlast serves as a stark reminder of the need for comprehensive cybersecurity measures in the manufacturing sector.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.