LockBit attacks Voyageurs Du Monde
Incident Date:
May 29, 2023
Overview
Title
LockBit attacks Voyageurs Du Monde
Victim
Voyageurs Du Monde
Attacker
Lockbit
Location
First Reported
May 29, 2023
Voyageurs Du Monde Suffers Ransomware Attack
Voyageurs Du Monde, a French travel agency, has suffered a ransomware attack. Lockbit has claimed responsibility for the attack, posting Voyageurs Du Monde to its dark web blog page on May 28. In a press release, Voyageurs Du Monde said: “Further to the announcement on May 25th whereby the Voyageurs du Monde Group had resumed operations following a cyber-attack mid-May, an in-depth analysis of our data - which took several days to complete - has revealed that some passport data copies have been stolen and published this morning. The Group has refused to pay a ransom. The information published by the attacking is very limited.”
“This data, which consists of passport photocopies collected on a voluntary basis at the request of our customers, is used to help organizing their travel arrangements (airflight tickets, visas, services, etc.). The customers concerned will be informed directly, having in mind that biometric data, which remains undisclosed through passport copy, ensures their security. It should be noted that this passport data does not concern the “individual travel” business and is limited to the “travel for groups” business, i.e., 2% of customers.”
“The crisis unit that was initially immediately set up to deploy all the necessary measures has already taken steps to reinforce access to passport data. Security and data protection remain our top concerns.”
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.