lockbit2 attacks Sage Fruit Co LLC
Incident Date:
April 30, 2022
Overview
Title
lockbit2 attacks Sage Fruit Co LLC
Victim
Sage Fruit Co LLC
Attacker
Lockbit2
Location
First Reported
April 30, 2022
Sage Fruit Co LLC Targeted by Lockbit2 Ransomware Group
Sage Fruit Co LLC, a prominent supplier based in Washington State, specializing in a variety of fruits including apples, pears, peaches, nectarines, apricots, and cherries, has recently fallen victim to the Lockbit2 ransomware group. Established in 1921 and operating as a fourth-generation grower in the Yakima Valley, the company is recognized as a leading fruit supplier in the region.
The cyberattack on Sage Fruit Co LLC is indicative of a growing trend where ransomware groups increasingly target the agriculture sector. Over the past year, cybersecurity firms have observed that at least 40 food companies have been compromised by ransomware. Lockbit2, in particular, has been notably active, with a representative openly declaring their intent to focus on the agriculture industry.
Understanding the Attack and Its Implications
The breach at Sage Fruit Co LLC serves as a stark reminder of the agriculture sector's susceptibility to cyber threats. Although specific details of the breach remain undisclosed, it is speculated that the attackers gained access through either a phishing scheme or by exploiting a software vulnerability. Subsequently, the company's files were encrypted, and a ransom was demanded in exchange for data restoration.
To counteract the threat of ransomware, it is imperative for companies within the agriculture sector to adopt comprehensive cybersecurity strategies. These should include regular updates to software systems, cybersecurity awareness training for employees, and the implementation of multi-factor authentication. Furthermore, maintaining multiple, isolated backups of data is crucial to ensure business continuity in the event of data being held ransom.
The attack on Sage Fruit Co LLC accentuates the critical need for heightened cybersecurity vigilance and preventive measures within the agriculture sector. By embracing rigorous cybersecurity protocols, businesses can significantly mitigate the risk of ransomware attacks and safeguard their operational integrity.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.