conti attacks Central Restaurant Products

Incident Date:

May 24, 2022

World map

Overview

Title

conti attacks Central Restaurant Products

Victim

Central Restaurant Products

Attacker

Conti

Location

Indianapolis, USA

Indiana, USA

First Reported

May 24, 2022

Central Restaurant Products Suffers Ransomware Attack

Central Restaurant Products, a retailer specializing in commercial restaurant equipment, has been targeted by the ransomware group Conti. The attack was announced on the group's dark web leak site, and the victim's website is https://www.centralrestaurant.com/. The company operates in the retail sector and offers a wide range of products, including commercial solid door reach-in refrigerators, gas ranges, hot topping warmers, and more.

Central Restaurant Products is a trusted supplier of commercial equipment for the foodservice industry, with a mission to outfit businesses of all sizes with long-lasting products and the service they deserve. The company has been in operation since 1981 and has a significant presence in the market, with more than 100,000 restaurant locations reportedly using its platform.

The ransomware attack on Central Restaurant Products is part of a broader trend of cyber threats targeting the hospitality industry. In recent months, other restaurant chains have also been affected, such as Yum Brands and Five Guys in January. The Conti group, responsible for the attack on Central Restaurant Products, is known for its advanced persistent threat (APT) capabilities and aggressive targeting of known vulnerabilities.

The attack on Central Restaurant Products highlights the need for companies to implement robust cybersecurity measures to protect against ransomware attacks. This includes maintaining backups, planning for trouble, hardening endpoints, keeping systems up-to-date, scanning for vulnerabilities, training employees, monitoring networks, implementing multi-factor authentication, and considering cyber liability insurance.

Central Restaurant Products has not disclosed the extent of the damage caused by the ransomware attack or the specific vulnerabilities exploited by the Conti group. The company is currently working to restore its services and has not identified the threat actor behind the attack.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.