conti attacks Aluminerie Alouette

Incident Date:

March 9, 2022

World map

Overview

Title

conti attacks Aluminerie Alouette

Victim

Aluminerie Alouette

Attacker

Conti

Location

Quebec, Canada

Quebec, Canada

First Reported

March 9, 2022

Aluminerie Alouette Suffers Ransomware Attack by Conti Group

Aluminerie Alouette, a leading primary aluminum producer, has been targeted by the ransomware group Conti, as reported on their dark web leak site. The company, which operates in the manufacturing sector, has an annual production capacity of over 620,000 tonnes of primary aluminum and employs over 850 people.

The attack on Aluminerie Alouette is part of a broader trend of ransomware attacks on various industries, with 71% of organizations worldwide experiencing at least one ransomware attack in 2022. The average total cost of such an attack reached $4.3 million.

Aluminerie Alouette has not publicly disclosed whether they paid the ransom demanded by the Conti group. However, cybersecurity expert Alexis Dorais-Joncas, who leads a team of malware researchers with IT security firm ESET, has commented that the attackers likely went deep into the network and may have more stolen data.

The Conti group, which emerged around 2019, has been responsible for several high-profile ransomware attacks, including one on the Electricity Company of Ghana (ECG) that crippled functionality and left customers unable to buy power.

Ransomware attacks typically involve encrypting files on a device, rendering them unusable, and demanding a ransom in exchange for decryption. In some cases, attackers may also steal data before decrypting it, a technique known as double-extortion.

To mitigate the risks of ransomware attacks, organizations should implement robust cybersecurity measures, regularly update their systems, and educate employees about phishing and other social engineering tactics used by attackers.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.