lockbit2 attacks Ackmo

Incident Date:

February 14, 2022

World map



lockbit2 attacks Ackmo






Eugeen Verelstlei, Belgium

Borsbeek, Belgium

First Reported

February 14, 2022

Ackmo, a Business Services Provider, Suffers Ransomware Attack by Lockbit2

Ackmo, a business services provider located in Borsbeek, Belgium, has recently fallen victim to a ransomware attack perpetrated by the Lockbit2 group. This incident was disclosed on the group's dark web leak site. Ackmo is known for offering a range of services including accounting, tax, and business advisory, specifically catering to the needs of family-owned businesses, KMOS, and sole proprietorships.

The selection of Ackmo by the ransomware group underscores the vulnerability of businesses that handle sensitive financial and business data. Such information is highly valuable to cybercriminals who aim to extort money by encrypting the company's data and demanding a ransom for its release. The digital nature of Ackmo's operations, including its website and client portals, presents potential entry points for cyber attackers.

Lockbit2, the group behind this attack, is notorious for its sophisticated approach to ransomware campaigns. They typically target organizations with significant digital footprints, exploiting weaknesses in remote desktop protocols (RDP) and deploying phishing schemes to infiltrate networks. Once inside, they deploy ransomware to encrypt files, rendering them inaccessible to the organization.

The repercussions of ransomware attacks are profound, leading to data loss, financial setbacks, and damage to the organization's reputation. To counteract these threats, it is imperative for businesses to adopt comprehensive cybersecurity strategies. This includes ensuring software is up-to-date, enforcing strong password policies, and educating employees on the importance of cybersecurity vigilance.

In response to the Lockbit2 attack, Ackmo's immediate focus should be on recovering their systems using secure backups, if available. Additionally, it is crucial to consult with cybersecurity professionals to evaluate the full extent of the breach and to fortify their defenses against future attacks.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.