hiveleak attacks Schuldnerberatung Ostfriesland e. V.

Incident Date:

January 25, 2022

World map



hiveleak attacks Schuldnerberatung Ostfriesland e. V.


Schuldnerberatung Ostfriesland e. V.




Leerer landstraBe, Germany

Aurich, Germany

First Reported

January 25, 2022

Hive Ransomware Attack on Schuldnerberatung Ostfriesland e. V.

Company Overview

Schuldnerberatung Ostfriesland e. V., based in Aurich, Germany, is a consumer services organization dedicated to providing assistance and guidance for individuals facing various challenges. The organization boasts a team of professionals, including Betreuer/-innen, Erwerbslosenberater/-innen, Schuldnerberater/-innen, and four assistants, all of whom bring a wealth of experience and expertise to the table. Their services are designed to support individuals in multiple aspects of their lives, aiming to offer comprehensive help where it's most needed.

Vulnerabilities and Targeting

The Hive ransomware group, known for its global targeting of more than 1,400 victims and accumulating ransom payments upwards of $120 million, has recently claimed responsibility for an attack on Schuldnerberatung Ostfriesland e. V. This group specializes in identifying and exploiting vulnerabilities within computer systems, deploying ransomware to encrypt data, and then engaging in ransom negotiations with their victims. Failure to comply with their demands often results in the victim's data being publicly disclosed. While the specific vulnerabilities exploited in this attack remain undisclosed, Hive's history of targeting sectors such as healthcare and critical infrastructure is well documented.

Impact and Response

The exact impact of the ransomware attack on Schuldnerberatung Ostfriesland e. V. has not been fully detailed. Nonetheless, the modus operandi of the Hive ransomware group involves data encryption and theft, tactics employed to leverage ransom negotiations. In response to this incident, the FBI Newark Field Office's Cyber Crimes Task Force, alongside international partners, has initiated an investigation. This includes charges against the Russian national Matveev for his alleged involvement in transmitting ransom demands, conspiring to damage protected computers, and the intentional harm to protected computers.

The attack on Schuldnerberatung Ostfriesland e. V. by the Hive ransomware group serves as a stark reminder of the persistent threat posed by ransomware to various sectors, including those within consumer services. It underscores the critical importance for organizations to adopt and maintain rigorous cybersecurity measures to safeguard against such pervasive threats.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.