LockBit 3.0 Ransomware Attack on Giovanni Randi S.p.A.
Incident Date:
May 9, 2024
Overview
Title
LockBit 3.0 Ransomware Attack on Giovanni Randi S.p.A.
Victim
Giovanni Randi S.p.A.
Attacker
Lockbit3
Location
First Reported
May 9, 2024
Ransomware Attack on Giovanni Randi S.p.A. by LockBit 3.0
Overview
Giovanni Randi S.p.A. fell victim to a cyberattack by the LockBit 3.0 ransomware group, resulting in the exfiltration of sensitive data totaling 40 GB in size. While the ransom demand was not specified, the attackers leaked a sample of the exfiltrated data on the internet, highlighting the severity of the attack and the potential impact on the company.
Victim Profile
Giovanni Randi S.p.A. is an Italian company specializing in the production of high-quality furniture and interior design solutions. The company is headquartered in Modena, Italy, and is known for its commitment to craftsmanship, innovation, and sustainability. Their products are designed and manufactured in Italy, ensuring attention to detail and high-quality standards.
Company Overview
The manufacturer has been in business for over 50 years, offering unique furniture and interior design solutions. They stand out in the industry due to their dedication to traditional craftsmanship combined with modern innovation, resulting in high-quality products that meet the needs of their discerning clientele.
Vulnerabilities
The company's focus on producing high-quality products and their international presence may have made them a target for threat actors like the LockBit 3.0 ransomware group. The exfiltration of sensitive data, including financial records and supplier information, highlights the vulnerabilities in their cybersecurity defenses.
Ransomware Group
The LockBit 3.0 ransomware group is an evolution of the LockBit group, known for its advanced capabilities and evasive tactics. The group operates under a Ransomware-as-a-Service model, allowing other cybercriminals to use their malware for attacks. LockBit 3.0 has been used to target a wide range of organizations globally, indicating the group's sophistication and reach.
Sources:
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.