Cybersecurity Breach: Ransomware Attack on New Production Concept by DragonForce

Incident Date:

April 21, 2024

World map

Overview

Title

Cybersecurity Breach: Ransomware Attack on New Production Concept by DragonForce

Victim

New Product Concept

Attacker

Dragonforce

Location

Imola, Italy

, Italy

First Reported

April 21, 2024

Ransomware Attack on New Production Concept by DragonForce

Overview

New Production Concept srl, an Italian manufacturing company specializing in the production of automatic machines, was recently targeted by the ransomware group DragonForce. New Production Concept (NPC) is known for its production of various automatic machines, including assembly packaging machines, linear and rotary filling machines, and other industrial machinery.

Company Profile

The company prides itself on its streamlined organization and ability to deliver comprehensive services encompassing both hardware and software components of machine production. NPC adheres to several quality and safety standards, and employs methodologies like World Class Manufacturing (WCM) and Lean Production.

Company Size and Industry Standing

NPC operates with a workforce of 11-50 employees, focusing on transparency in its business operations. This approach includes openly sharing purchasing costs, overheads, and markups with customers and partners, which underscores its commitment to competitiveness and cost-effectiveness.

Vulnerabilities and Target Profile

The size of the company, and its significant role in the manufacturing sector, combined with its integration of sophisticated technology in machinery, makes it an attractive target for cybercriminals like DragonForce. The company's reliance on digital processes for managing its supply chain and production operations could potentially expose vulnerabilities, particularly if not safeguarded adequately against evolving cyber threats.

Implications of the Attack

The attack involved the exfiltration of approximately 19.23 GB of data from the company in a significant data breach. This not only threatens the operational integrity of NPC but also poses risks to its business relationships and competitive position in the industry. The breach could potentially lead to significant disruptions in production and a loss of trust among clients and partners, emphasizing the need for enhanced cybersecurity measures within the manufacturing sector.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.