lockbit3 attacks Lonseal
Incident Date:
June 29, 2022
Overview
Title
lockbit3 attacks Lonseal
Victim
Lonseal
Attacker
Lockbit3
Location
First Reported
June 29, 2022
Lonseal Targeted by Lockbit3 Ransomware Group
Company Overview
Lonseal specializes in high-quality sheet vinyl flooring for various industries, emphasizing environmental sustainability. Their products, which include recycled content and low-emitting materials, support LEED v4/4.1 certifications.
Industry Vulnerabilities
The manufacturing sector has emerged as a prime target for ransomware attacks, with data from Unit 42 in 2023 showing it as the most affected industry. This trend underscores the critical vulnerabilities within this sector.
Ransomware Attack
The Lockbit3 ransomware group has launched an attack against Lonseal, stealing sensitive data including financial reports, contracts, customer PII, and more. They have threatened to release the stolen data unless their ransom demands are met.
Response and Mitigation
The Port of Lisbon Administration, where Lonseal is located, has acknowledged the cyberattack. Efforts are underway in collaboration with authorities to secure systems and data. The ransom set by LockBit is US$1,500,000, with an option to delay data publication by 24 hours for a smaller ransom.
Sources
- Lonseal. (n.d.). Home. Retrieved April 10, 2024, from https://lonseal.com
- Unit 42. (2024, February 5). Ransomware Retrospective 2024: Unit 42 Leak Site Analysis. Retrieved April 10, 2024, from https://unit42.paloaltonetworks.com/unit-42-ransomware-leak-site-data-analysis/
- CISA. (n.d.). Ransomware 101. Retrieved April 10, 2024, from https://www.cisa.gov/stopransomware/ransomware-101
- Port of Lisbon targeted by LockBit ransomware hackers, website still down. (2023, January 2). Retrieved April 10, 2024, from https://industrialcyber.co/news/port-of-lisbon-targeted-by-lockbit-ransomware-hackers-website-still-down/
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.