Cyber Attack on Optima Manufacturing: A Closer Look

Incident Date:

April 11, 2024

World map

Overview

Title

Cyber Attack on Optima Manufacturing: A Closer Look

Victim

Optima Manufacturing

Attacker

Hunters International

Location

Calgary, Canada

, Canada

First Reported

April 11, 2024

Ransomware Attack on Optima Manufacturing

Company Profile

Optima Manufacturing is a precision manufacturing company based in Calgary, Alberta, Canada. Specializing in high precision, tight tolerance CNC machined components and assemblies, it employs 89 individuals and generates revenue of $29 million. Its parts find applications in various industries such as Aerospace, Oil and Gas, Environmental Control, Agriculture, and Telecommunications.

Company Standout

Renowned for providing top-quality state-of-the-art close-tolerance machining and precision assembly services, Optima Manufacturing has been in operation for over 30 years. It has earned a reputation for crafting precision parts for global leaders situated in the foothills of the Canadian Rockies. In March 2022, the company forged a strategic partnership with Hibiki-Seiki to supply the North American Aerospace Industry.

Ransomware Incident

In a recent ransomware attack on Optima Manufacturing, approximately 412.4GB of data, totaling 942,317 files, was reportedly stolen. The incident, made public by the cybercriminal group Hunters International, occurred on April 11, 2024, in Canada. Financial details, including the ransom price, have not been disclosed. Given its prominence in the manufacturing sector and its partnerships with key industries, Optima Manufacturing is a prime target for threat actors. Advanced technologies and efficient processes may have attracted the attention of cybercriminals seeking to gain access to its systems.

Sources:

Optima Manufacturing Website

ZoomInfo - Optima Manufacturing Profile

RocketReach - Optima Manufacturing Profile

Hunters International Dark Web Profile

NPR - The Ransomware Hunting Team

Hive Ransomware Group Dark Web Profile

Infosecurity Europe - Open Source Data Tracking Threat Actors

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.