DragonForce Ransomware Attack on Parrish-McCall Constructors Inc.
Incident Date:
June 8, 2024
Overview
Title
DragonForce Ransomware Attack on Parrish-McCall Constructors Inc.
Victim
Parrish-McCall Constructors Inc.
Attacker
Dragonforce
Location
First Reported
June 8, 2024
DragonForce Ransomware Attack on Parrish-McCall Constructors Inc.
Overview of Parrish-McCall Constructors Inc.
Parrish-McCall Constructors Inc., based in Gainesville, Florida, is a full-service commercial construction company. Established in 1968 as M.M. Parrish Construction Company, it specializes in General Contracting, Design-Build, and Construction Management. The company operates across various sectors, including commercial, educational, healthcare, and institutional facilities. Known for its commitment to quality, safety, and client satisfaction, Parrish-McCall has built a reputation for delivering high-quality projects through an open and transparent process.
Details of the Ransomware Attack
In a recent cyberattack, the ransomware group DragonForce claimed responsibility for infiltrating Parrish-McCall Constructors Inc. The attack resulted in the exfiltration of 71.88GB of sensitive data. The breach was announced on DragonForce's dark web leak site, highlighting the group's use of double extortion tactics. This method involves not only encrypting the victim's data but also threatening to release it unless a ransom is paid.
About DragonForce
DragonForce is a relatively new but notorious ransomware group that emerged in November 2023. The group has quickly gained attention for its high-profile attacks, including those on the Ohio Lottery and the government of Palau. DragonForce is known for using a leaked ransomware builder from the infamous LockBit group, indicating a trend of cybercriminals repurposing existing malware tools to enhance their capabilities.
Potential Vulnerabilities
Parrish-McCall Constructors Inc. may have been targeted due to vulnerabilities common in the construction sector, such as outdated software, insufficient network segmentation, and inadequate employee training on cybersecurity. The company's extensive involvement in various high-stakes projects could make it an attractive target for ransomware groups seeking substantial ransom payments.
Implications of the Attack
The attack on Parrish-McCall Constructors Inc. underscores the growing threat of ransomware to critical infrastructure sectors. The exfiltration of a significant amount of data not only jeopardizes the company's operations but also poses risks to its clients and partners. This incident highlights the need for robust cybersecurity measures to protect against increasingly sophisticated ransomware attacks.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.