KICO Group: Battling Ransomware Fallout

Incident Date:

April 2, 2024

World map



KICO Group: Battling Ransomware Fallout




Ra Group


Halver, Germany

, Germany

First Reported

April 2, 2024

KICO Group Suffers Ransomware Attack

Company Overview

KICO Group is a leading supplier of automotive technology, offering a range of products including active and passive suspension systems, ISOFIX seat belt anchors, mechatronics systems, and active aerodynamics systems. The company prides itself on delivering high-quality solutions for automotive customers seeking perfection.

Industry Standing

In the manufacturing sector, a prominent entity stands out, particularly in automotive technology. Their specialization lies in mechatronics and active aerodynamics systems, distinguishing KICO Group from competitors, as these technologies are pivotal for modern vehicle performance and efficiency.


The KICO Group, operating in data processing could faces ransomware threats due to software vulnerabilities. The RA Group, infamous for targeting healthcare and recent breaches in Las Vegas casinos, exploits vulnerabilities like CVE-2024-1708 and CVE-2024-1709 in ConnectWise ScreenConnect 23.9.7. To defend against ransomware, organizations should adopt cybersecurity best practices, assess their setups, and implement measures like offline backups. Regular testing and evaluation using tools like audits and penetration tests, along with adherence to standards like NCSC Cyber Essentials, can bolster defenses.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.