lockbit3 attacks Kangaroo
Incident Date:
August 2, 2022
Overview
Title
lockbit3 attacks Kangaroo
Victim
Kangaroo
Attacker
Lockbit3
Location
First Reported
August 2, 2022
Kangaroo Ransomware Attack on a Leading Vietnamese Home Appliance Manufacturer
Company Profile
Kangaroo, a prominent Vietnamese home appliance manufacturer founded in 2003, has become a leading figure in the manufacturing sector. The company offers a diverse range of products, including water filters and kitchen appliances, and is known for its focus on innovation, quality, and customer satisfaction. Through its partnership with Noritz, a leading Japanese home appliance manufacturer, Kangaroo has further expanded its operations and market reach.
Vulnerabilities and Targeting
The recent ransomware attack on Kangaroo by the Lockbit3 group underscores the growing threat of ransomware across various industries. By exploiting vulnerabilities within Kangaroo's systems, specifically through the Remote Desktop Protocol (RDP), the attackers were able to infiltrate the company's network. This incident highlights the critical need for businesses to secure their digital infrastructure against such vulnerabilities.
Impact and Response
The encryption of Kangaroo's data by the ransomware could have significant repercussions on the company's operations. While the full extent of the damage and the company's response measures have not been publicly disclosed, this event emphasizes the importance of having effective cybersecurity strategies and incident response plans in place to mitigate the impact of ransomware attacks.
Lessons Learned
This incident serves as a crucial reminder of the importance of cybersecurity within the manufacturing sector. To safeguard against ransomware and other cyber threats, companies must prioritize the implementation of comprehensive security measures. These include conducting regular software updates, providing employee training on cybersecurity best practices, and developing thorough incident response plans.
Sources
- Kangaroo - Tập đoàn gia dụng hàng đầu Việt Nam
- The Kangaroo Ransomware not only Encrypts your Data but tries to Lock you out of Windows
- Kangaroo Ransomware uses unique technique to infect and cover tracks
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.