lockbit2 attacks La Ponte Marmi srl

Incident Date:

January 27, 2022

World map



lockbit2 attacks La Ponte Marmi srl


La Ponte Marmi srl




Romagnano, Italy

Verona, Italy

First Reported

January 27, 2022

LockBit Ransomware Attack on La Ponte Marmi Srl

La Ponte Marmi Srl, a stalwart in the Manufacturing sector, recently fell victim to the LockBit ransomware group. This incident was disclosed on the group's clandestine dark web leak site. With over half a century of expertise in the lapidary sector, La Ponte Marmi Srl prides itself on delivering an extensive array of products, from raw materials to finished works, with an unwavering commitment to quality and precision.

The LockBit ransomware gang, operating under a ransomware-as-a-service (RaaS) model since September 2019, has notoriously targeted a slew of high-profile entities, including Bangkok Airways and Accenture, among hundreds of other global businesses. This group is distinguished by its StealBit tool, capable of exfiltrating 100 GB of data from a compromised system in a mere 20 minutes.

While specific vulnerabilities that might have exposed La Ponte Marmi Srl to this cyber onslaught remain undisclosed, the company's reputation for quality and precision could hint at a perceived ability to meet ransom demands for the restoration of access to their systems and data.

LockBit's operational strategy is straightforward yet effective: identify lucrative targets, propagate the infection, and encrypt all reachable computer systems within a network, thereby holding them ransom. As of this writing, La Ponte Marmi Srl has yet to comment on the attack. The cybersecurity community remains vigilant, keenly observing any developments and potential repercussions on the company's operations.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.