DragonForce Ransomware Attack Threatens EvoEvents Limited

Incident Date:

June 8, 2024

World map



DragonForce Ransomware Attack Threatens EvoEvents Limited


EvoEvents Limited




Hamilton, New Zealand

, New Zealand

First Reported

June 8, 2024

DragonForce Ransomware Attack on EvoEvents Limited

Overview of EvoEvents Limited

Founded in 2012, EvoEvents Limited is a New Zealand-based company that specializes in organizing and managing various types of events, including corporate events, conferences, exhibitions, and private functions. The company prides itself on delivering tailored event planning services that encompass every aspect of event execution. With a small team of less than 10 employees, EvoEvents leverages its extensive network of industry contacts to ensure high-quality outcomes within budget constraints.

Details of the Attack

Recently, the ransomware group DragonForce has claimed responsibility for an attack on EvoEvents Limited. The attackers reportedly gained access to 6.14 GB of the company's data and have threatened to publish it within the next 26–27 days. This breach has caused significant disruptions to EvoEvents' operations, impacting their ability to deliver services to clients.

About DragonForce

DragonForce is a relatively new ransomware strain that has quickly gained notoriety through high-profile attacks. The group employs a double extortion tactic, not only encrypting victim data but also threatening to release it unless a ransom is paid. DragonForce has been linked to the use of a leaked ransomware builder from the notorious LockBit group, indicating a trend of cybercriminals repurposing existing tools to enhance their capabilities.

Potential Vulnerabilities

Given its small size, EvoEvents Limited may have been particularly vulnerable to ransomware attacks due to limited cybersecurity resources. The company's reliance on digital data for event planning and management makes it an attractive target for threat actors. The exact method of penetration remains unclear, but common vectors include phishing emails, unpatched software vulnerabilities, and weak password policies.

Implications for EvoEvents Limited

The attack on EvoEvents Limited underscores the growing threat of ransomware to small and medium-sized enterprises. The potential release of sensitive data could have severe repercussions for the company's reputation and client trust. As the situation unfolds, EvoEvents will need to navigate the challenges of data recovery and potential ransom negotiations.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.