conti attacks A.J. Rose

Incident Date:

March 4, 2022

World map



conti attacks A.J. Rose


A.J. Rose




Avon, USA

Ohio, USA

First Reported

March 4, 2022

A.J. Rose Manufacturing: A Target for Ransomware Attacks

A.J. Rose, a precision metal stamping and formed metal products company, has been targeted by the ransomware group Conti. The company operates in the manufacturing sector, which has seen a surge in ransomware attacks, with at least 437 attacks in 2022, accounting for over 70% of such incidents in the industrial sector. The manufacturing industry is particularly vulnerable to these attacks due to the increasing reliance on digital systems and the interconnected nature of industrial control systems.

A.J. Rose's website provides information about their precision metal stamping and formed metal products, as well as their assemblies. The company's size and specific industry niche are not explicitly mentioned on their website. However, the manufacturing sector is known for its complex supply chains and interconnected systems, which can make it challenging to secure against cyber threats.

The Conti ransomware group has been active in targeting various sectors, including manufacturing, and has been known to use custom tools to enhance their attacks. The group's recent development of two new custom data-gathering tools, Grixba and VSS Copying Tool, allows them to more effectively carry out ransomware campaigns.

To mitigate the risks of ransomware attacks, companies in the manufacturing sector should prioritize cybersecurity measures, such as implementing robust access controls, regularly updating software and systems, and conducting employee training on cybersecurity best practices. Additionally, companies should consider investing in cybersecurity insurance to protect against potential financial losses from ransomware attacks.

The ransomware attack on A.J. Rose highlights the growing threat of cyberattacks in the manufacturing sector. Companies in this sector should be vigilant and proactive in implementing cybersecurity measures to protect against such threats.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.