lockbit2 attacks Fördersysteme Engineering GmbH

Incident Date:

May 19, 2022

World map



lockbit2 attacks Fördersysteme Engineering GmbH


Fördersysteme Engineering GmbH




, Germany

Dramstadt, Germany

First Reported

May 19, 2022

Ransomware Attack on Fördersysteme Engineering GmbH

Company Profile

Fördersysteme Engineering GmbH (FED), a mid-sized company in the manufacturing sector based in Darmstadt, Germany, has been targeted by the ransomware group Lockbit2. The attack was announced on the group's dark web leak site. FED specializes in the design, development, and production of conveyor systems and automation solutions, with a focus on the automotive industry and customized solutions for other sectors of the machinery industry.

FED was founded in 1996 by former employees of Carl Schenck AG and has grown to a team of 15 employees. The company is recognized for its innovative and sustainable solutions in machine concepts and material flow, emphasizing conveyor systems, conveyor lines, and automation technology. FED's modern organizational structure promotes quick decision-making and flexibility, enabling a responsive approach to customer needs. The cooperative work style at FED is instrumental in fostering the development of innovative ideas and strategic processes.


The specific vulnerabilities that led to FED being targeted by Lockbit2 have not been disclosed. Nonetheless, FED's commitment to quality and customer satisfaction is evidenced by its certification according to the international quality management standard DIN EN ISO 9001:2015 since 2001.

Impact and Response

The ransomware attack on FED has reportedly not caused significant disruption to the company's operations or services. The company's website remains accessible, and there is no indication of a data breach or loss of sensitive information. The details of whether FED has paid the ransom demanded by Lockbit2 or if they have managed to recover from the attack without succumbing to the demands remain undisclosed.

The ransomware attack on Fördersysteme Engineering GmbH underscores the persistent threat of cyber attacks on businesses across all sizes and sectors. Although FED has not shared specifics about the attack or their response strategy, it is imperative for companies to implement comprehensive cybersecurity measures. This strategy should encompass regular software updates and patches, thorough employee training, and the development of effective incident response plans to mitigate the risks of such threats.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.