hiveleak attacks Sadbhav Engineering Limited

Incident Date:

January 25, 2022

World map



hiveleak attacks Sadbhav Engineering Limited


Sadbhav Engineering Limited




Bahadurgarh, India

Haryana, India

First Reported

January 25, 2022

Sadbhav Engineering Limited: A Leading Infrastructure Company Targeted by Hiveleak Ransomware Group

Sadbhav Engineering Limited (SEL), a prominent infrastructure company in India, has recently fallen victim to the ransomware group Hiveleak. The attack was disclosed on the group's dark web leak site. SEL is renowned in the Construction sector, celebrated for its significant contributions and achievements.

Company Overview

Established in 1988 by Mr. Vishnubhai Patel, Sadbhav Engineering Limited has risen to prominence as a top-tier infrastructure entity within India. The company has been instrumental in executing projects of national importance, thereby becoming an integral part of the Indian Infrastructure sector. Its core mission is to improve the quality of life for individuals throughout the country, fostering new opportunities while ensuring uncompromised quality.

Awards and Recognition

Sadbhav Engineering Limited has been the recipient of numerous accolades for its outstanding performance in the construction sector, including:

  • NHAI Awards for Excellence 2018
  • Construction Times Awards 2018
  • AMA – Atlas Dyechem Outstanding Entrepreneur of the Year Award 2017
  • Construction Times Award 2017
  • 6th EPC World Award 2017
  • Dun & Bradstreet – Everest Industries Infra Awards 2016

Vulnerabilities and Impact

The ransomware attack on Sadbhav Engineering Limited has resulted in a significant disruption of the company's critical operations, adversely affecting its supply chain and revenue streams. The attackers successfully infiltrated the company's systems and servers, encrypting data and leaving ransom payment instructions on compromised computers.

Mitigation Strategies

To combat ransomware threats, organizations are advised to adopt comprehensive endpoint security measures, engage in proactive threat hunting with advanced detection solutions, encrypt sensitive data, ensure regular data backups, fortify network architecture with stringent security protocols, and maintain effective firewall defenses.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.