cuba attacks Edgo Management Group EMG

Incident Date:

February 4, 2022

World map



cuba attacks Edgo Management Group EMG


Edgo Management Group EMG




Al Abraj, Jordan

Amman, Jordan

First Reported

February 4, 2022

Edgo Management Group Targeted by Ransomware Group Cuba

The Engineering and Development Group (Edgo), an international company specializing in the energy services sector, has been targeted by the ransomware group Cuba. The attack was announced on the group's dark web leak site, and the victim's website is Edgo operates in the Energy, Utilities & Waste sector and has a significant presence in the Middle East and Africa, providing oilfield services and support operations to the oil and gas industry.

Edgo's core strength lies in its experience of working in harsh and challenging environments, and its ability to enter and set up infrastructure in new energy markets has played a vital role in the success of many oil and gas exploration and development programs. The company is committed to the development of indigenous skills and expertise, and training and investment in the communities where it operates are key aspects of its operations.

The company's locations span across various countries, including Algeria, Canada, Chad, Egypt, Iraq, Jordan, Kenya, Lebanon, Libya, Malta, Oman, Palestine, Qatar, Saudi Arabia, Tajikistan, UAE, Uganda, United Kingdom, Cyprus, Yemen, and others.

The size of Edgo Management Group is not explicitly mentioned in the search results, but the company's international presence and diverse operations suggest a significant scale. The company's vulnerabilities in being targeted by threat actors are not explicitly stated in the search results, but the ransomware attack indicates that the group may have had weaknesses in its cybersecurity defenses.

The ransomware group Cuba has claimed responsibility for the attack, but the details of the attack, such as the type of ransomware used and the extent of the damage, are not provided in the search results.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.