lockbit2 attacks Ametis

Incident Date:

February 4, 2022

World map



lockbit2 attacks Ametis






Morangis, France

Morangis, France

First Reported

February 4, 2022

Ametis: A Target for Lockbit2 Ransomware Attack

Ametis, a French facility services company with over 25 years of expertise in the industry, has been targeted by the ransomware group Lockbit2. The attack was announced on the group's dark web leak site. Ametis specializes in facility services, including maintenance, works, logistics, and transport across France. The company offers a range of services, from electrical maintenance to multi-technical maintenance, covering various sectors such as retail, banking, and hospitality.

Ametis's website provides information about their services, which include electrical maintenance, relamping, and security lighting, among others. They also offer multi-technical maintenance services, including metal blinds, serrurerie, plumbing, and painting. The company's expertise in facility services and its presence in various sectors make it a potential target for ransomware attacks.

The size of Ametis is not explicitly mentioned on their website, but their services cover a wide range of industries, suggesting a significant presence in the market. The company's expertise in facility services and its ability to manage multiple sites make it a valuable asset in the industry. However, this also exposes them to potential vulnerabilities, as managing multiple sites can lead to complex IT infrastructure and increased attack surfaces.

The ransomware attack on Ametis is part of a broader trend of ransomware targeting Latin American governments, with groups like Conti, ALPHV (BlackCat), LockBit 2.0, and BlackByte being active in the region. The attack on Ametis may be part of a larger campaign targeting companies in the facility services sector or those with significant IT infrastructure.

In response to the attack, Ametis has not issued a public statement. It is unclear whether the company has taken any specific measures to mitigate the impact of the ransomware attack or to prevent future attacks.

The ransomware attack on Ametis serves as a reminder of the importance of cybersecurity in the facility services sector and the need for companies to invest in robust security measures to protect their IT infrastructure and sensitive data.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.