CODISEL Suffers Ransomware Attack by Lockbit2

CODISEL, a Mexican company specializing in the provision of food services for public and private institutions, has been targeted by the ransomware group Lockbit2. The attack was announced on the group's dark web leak site, and the victim's website is currently experiencing issues, likely as a direct result of this cyber assault. CODISEL operates within the Law Firms & Legal Services sector and has established itself over the past 15 years as a provider of comprehensive solutions in food services, including abasto integral de víveres, comedores industriales, cafeterías industriales, and soluciones en alimentos.

The company prides itself on its commitment to quality, punctuality, and coverage across the central and southeastern regions of Mexico. They emphasize the importance of hygiene, confidence, and security in the handling of food, boasting certifications such as the Distintivo H, REPSE, and Certificado de Conformidad en Igualdad Laboral y No Discriminación.

The specific vulnerabilities that led to this attack have not been disclosed. However, it is widely recognized that ransomware groups like Lockbit2 exploit weaknesses in software, outdated systems, or unpatched vulnerabilities to infiltrate networks. Lockbit2, in particular, is notorious for its ability to bypass security measures and access sensitive data, often utilizing phishing emails or exploiting unpatched vulnerabilities as their entry points.

Following the attack, CODISEL's website is down, displaying an error message indicating a connection refusal. This disruption is characteristic of ransomware attacks, which typically involve encrypting data and demanding a ransom for its release. In light of this event, it is imperative for CODISEL to undertake immediate actions to mitigate the damage and prevent further data loss. Such measures may include isolating affected systems, restoring data from backups, and enhancing security protocols to thwart future attacks.

Sources

• CODISEL: Comedores y Cafeterías Industriales - Abasto de Víveres
• Error while trying to retrieve the URL: http://www.codisel.com.mx/
• RSSD: Defend against ransomware with hardware-isolated network-storage codesign and post-attack analysis. Available at: https://ieeexplore.ieee.org/document/8328745
• Ransomware Posts - GitHub Pages. Available at: https://github.com/topics/ransomware