conti attacks I-SEC International Security
Incident Date:
April 1, 2022
Overview
Title
conti attacks I-SEC International Security
Victim
I-SEC International Security
Attacker
Conti
Location
First Reported
April 1, 2022
I-SEC International Security Ransomware Attack
I-SEC International Security, a leading provider of aviation security services worldwide, has been targeted by the ransomware group Conti. The attack was announced on the group's dark web leak site, and the victim's website is https://www.i-sec.com/. I-SEC operates in the Business Services sector and is headquartered in Amsterdam, Netherlands. The company specializes in aviation security services and has over 5,000 employees at 16 international airports in Europe and Asia.
I-SEC's services include passenger and luggage screening, cargo security, and general security services such as shop surveillance, CCTV surveillance, and access control. The company's size and global presence make it a significant target for threat actors, particularly in the aviation sector, which is known for its high-value targets and critical infrastructure.
The ransomware attack on I-SEC is part of a broader trend of cyber threats targeting the aviation industry. In 2023, the Dark Angels ransomware group targeted Johnson Controls, a global security and smart building automation solutions provider, demanding a ransom of $51 million. This attack caused significant disruption to Johnson Controls' IT infrastructure and resulted in the exfiltration of over 25 TB of data.
The Conti ransomware group has a history of targeting organizations in various sectors, including healthcare, government, finance, and education. The group is known for its double extortion tactics, where it encrypts data and threatens to publish it if the ransom is not paid.
I-SEC's vulnerabilities in being targeted by threat actors may include outdated software, weak passwords, or insufficient employee training. The company should prioritize cybersecurity measures such as regular software updates, strong password policies, and employee training to mitigate the risks of ransomware attacks.
The ransomware attack on I-SEC International Security highlights the need for robust cybersecurity measures in the aviation sector. Companies must invest in proactive strategies and always-on defenses to protect against the evolving threat landscape.
Sources
- I-SEC International Security
- Johnson Controls Ransomware Attack
- Ransomware Report: Latest Attacks and News
- Ransomware gang files SEC complaint against company that refused to negotiate
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.