lockbit2 attacks Virtus Viaggi & Turismo

Incident Date:

June 9, 2022

World map



lockbit2 attacks Virtus Viaggi & Turismo


Virtus Viaggi & Turismo




Metropolitan, Italy

Palermo, Italy

First Reported

June 9, 2022

Virtus Viaggi & Turismo Targeted by Lockbit2 Ransomware Group

The Italian tour operator Virtus Viaggi & Turismo has been targeted by the Lockbit2 ransomware group, as reported on their dark web leak site. The company, which operates in the hospitality sector, has not yet confirmed the attack publicly.

Company Overview

Virtus Viaggi & Turismo is a tour operator and destination management company based in Palermo, Italy. They offer a range of services, including tour packages, accommodation bookings, and travel experiences in various destinations worldwide.

Industry Vulnerabilities

The hospitality industry is a popular target for ransomware attacks due to the disruption and revenue loss caused by these attacks. Ransomware gangs often time their attacks for busy periods, such as holidays, to maximize the pressure on victims to pay large ransoms.

Potential Impact

A successful ransomware attack on Virtus Viaggi & Turismo could result in significant disruption to their operations, including the loss of customer data and the inability to process bookings or provide services. This could lead to a loss of customer trust and damage to the company's reputation.

Mitigation Strategies

To mitigate the risk of ransomware attacks, companies in the hospitality sector should implement strong network segmentation and access controls, utilize preemptive protection solutions powered by threat intelligence, and train staff to identify and report phishing attempts. Additionally, implementing Data Loss Prevention (DLP) controls can help prevent sensitive data from being transferred to attackers.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.