lockbit2 attacks FOCUS Adventure

Incident Date:

May 21, 2022

World map



lockbit2 attacks FOCUS Adventure


FOCUS Adventure




Gunner, Singapore

Sentosa, Singapore

First Reported

May 21, 2022

FOCUS Adventure Suffers Ransomware Attack by Lockbit2 Group

Company Overview

FOCUS Adventure, a leading adventure training provider in the region, has been targeted by the ransomware group Lockbit2. The attack was announced on the group's dark web leak site. FOCUS Adventure operates in the Consumer Services sector and has been recognized for its excellence in team building and experiential learning programs.

FOCUS Adventure has been awarded the Best Teambuilding Vendor of the Year by Human Resources for seven consecutive years from 2015 to 2021. The company is committed to providing world-class adventure learning programs, aiming to be a catalyst for personal, interpersonal, and organizational growth and change. FOCUS Adventure's core values include fun, openness, challenge, understanding, and safety, ensuring a healthy learning and working environment.

Vulnerabilities and Impact

The ransomware attack on FOCUS Adventure highlights the importance of robust cybersecurity measures in the Consumer Services sector. Ransomware attacks have become increasingly common, with small and medium businesses, including those in hard-hit industries like healthcare and manufacturing, being primary targets. The attack on FOCUS Adventure underscores the need for organizations to prioritize cybersecurity and assume that they are potential targets.

Mitigation Strategies

To mitigate the risks of ransomware attacks, organizations should focus on proactive measures such as:

  • Regularly updating software and systems
  • Implementing strong password policies
  • Conducting regular security audits
  • Educating employees about cybersecurity best practices
  • Backing up data and testing recovery plans

The ransomware attack on FOCUS Adventure serves as a reminder that no organization is immune to cyber threats. By prioritizing cybersecurity and implementing proactive measures, businesses can reduce their risk of falling victim to such attacks.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.