lockbit2 attacks ZDG

Incident Date:

May 1, 2022

World map



lockbit2 attacks ZDG






New York, USA

New York, USA

First Reported

May 1, 2022

ZDG LLC Suffers Ransomware Attack by Lockbit2

Company Overview

ZDG LLC, a privately held, full-service construction management group headquartered in New York City, has been targeted by the ransomware group Lockbit2. The attack was announced on the group's dark web leak site. ZDG operates in the construction sector and has been delivering challenging projects in the New York Metro Area for over 35 years.

ZDG LLC is known for its commitment to building strong long-term relationships with clients, collaboration, and delivering safe, high-quality projects on time. The company's team is experienced, creative, and understands the complexity of building in New York City. ZDG offers pre-construction, construction, and post-construction services to the tristate region, with a focus on new residential construction, hospitality, mixed-use commercial/retail buildings, building space conversions, commercial interior fit-out work, and institutional endeavors.

Vulnerabilities and Impact

The specific details of the attack and its impact on ZDG LLC are not provided. However, ransomware attacks typically involve encrypting the victim's data and demanding a ransom to restore access. These attacks can cause significant disruption to operations and may result in financial losses, reputational damage, and potential legal consequences.

Industry Trends and Mitigation Strategies

The construction sector has seen an increase in cyber attacks, with ransomware being a common threat. To mitigate these risks, companies should implement robust cybersecurity measures, such as regular software updates, employee training, and multi-factor authentication. Additionally, having a well-defined incident response plan can help minimize the impact of an attack.

The ransomware attack on ZDG LLC serves as a reminder of the ongoing threat posed by cybercriminals to businesses across industries. As the construction sector continues to digitalize, it is crucial for companies to prioritize cybersecurity to protect their operations and reputation.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.