LockBit attacks Voyageurs Du Monde

Incident Date:

May 29, 2023

World map



LockBit attacks Voyageurs Du Monde


Voyageurs Du Monde




Paris, France

, France

First Reported

May 29, 2023

Voyageurs Du Monde Suffers Ransomware Attack

Voyageurs Du Monde, a French travel agency, has suffered a ransomware attack. Lockbit has claimed responsibility for the attack, posting Voyageurs Du Monde to its dark web blog page on May 28. In a press release, Voyageurs Du Monde said: “Further to the announcement on May 25th whereby the Voyageurs du Monde Group had resumed operations following a cyber-attack mid-May, an in-depth analysis of our data - which took several days to complete - has revealed that some passport data copies have been stolen and published this morning. The Group has refused to pay a ransom. The information published by the attacking is very limited.”

“This data, which consists of passport photocopies collected on a voluntary basis at the request of our customers, is used to help organizing their travel arrangements (airflight tickets, visas, services, etc.). The customers concerned will be informed directly, having in mind that biometric data, which remains undisclosed through passport copy, ensures their security. It should be noted that this passport data does not concern the “individual travel” business and is limited to the “travel for groups” business, i.e., 2% of customers.”

“The crisis unit that was initially immediately set up to deploy all the necessary measures has already taken steps to reinforce access to passport data. Security and data protection remain our top concerns.”

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.