lockbit3 attacks Group SAVOIE

Incident Date:

October 15, 2022

World map

Overview

Title

lockbit3 attacks Group SAVOIE

Victim

Group SAVOIE

Attacker

Lockbit3

Location

Saint-Quentin, Canada

, Canada

First Reported

October 15, 2022

LockBit3 Claims Ransomware Attack on Group SAVOIE

Company Overview

Group SAVOIE is a company dedicated to future growth and innovation. They specialize in hardwood lumber, tonewood, cabinets and furniture components, other hardwood components, pallets, pallet components, ecological fuels and bi-products, and resource management. The company's products are known for their unmatched quality and worldwide delivery.

Vulnerabilities and Targeting

The manufacturing sector has been a common target for ransomware attacks due to the operational needs to restore functionality rapidly, leading to a reputation for rapid payment of ransoms. However, the British Library's experience of weathering a ransomware attack without paying or engaging with the hackers serves as a warning to ransomware gangs contemplating future attacks on publicly-funded institutions.

Ransomware Threat Landscape

LockBit3 is a prolific ransomware variant that has targeted numerous victims across various industries, including manufacturing and other sectors. The group has been responsible for more than 300 successful cyberattacks since June 2022.

Mitigation Strategies

To mitigate ransomware attacks, organizations should take steps such as inventorying assets and data, granting admin privileges and access only when necessary, monitoring network ports and protocols, and regularly patching and updating software and applications.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.