lockbit2 attacks E.S.T.P.M

Incident Date:

January 27, 2022

World map

Overview

Title

lockbit2 attacks E.S.T.P.M

Victim

E.S.T.P.M

Attacker

Lockbit2

Location

Tour Maury, France

Saint-Pierre, France

First Reported

January 27, 2022

E.S.T.P.M Suffers Ransomware Attack by Lockbit2

Company Overview

E.S.T.P.M is a manufacturing company, but specific details about its size, unique features, and vulnerabilities are not readily available in the search results. The company's website provides limited information about its services and products, focusing on its expertise in the field of manufacturing.

Ransomware Attack

Ransomware attacks have become increasingly common, with 71% of organizations worldwide experiencing at least one ransomware attack in 2022. The average total cost of an attack hit an astounding $4.3 million. In this case, Lockbit2 has targeted E.S.T.P.M, encrypting their systems and demanding a ransom in exchange for decryption.

Ransomware Group

Lockbit2 is a ransomware group that has been active in recent years, targeting various organizations across different industries. The group is known for its double-extortion tactics, where it exfiltrates data before encrypting it and threatens to leak or sell the stolen data if the ransom is not paid.

Mitigation Strategies

To mitigate the risks of ransomware attacks, organizations should implement robust cybersecurity measures, such as multi-factor authentication, robust patching and vulnerability management, up-to-date antivirus and intrusion detection systems, and remote desktop protocols that are either disabled or not accessible from the internet. Additionally, creating and checking offline backups, along with a robust restore procedure, can help organizations recover quickly from an attack.

The ransomware attack on E.S.T.P.M by Lockbit2 highlights the growing threat of ransomware to organizations across various sectors. While specific details about the company's size and unique features are not available, it is clear that ransomware attacks can have significant financial and operational consequences for any organization. Implementing strong cybersecurity measures and having a robust incident response plan in place can help mitigate these risks.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.