Osprey Video Suffers Ransomware Attack by Lockbit3

Osprey Video, a company specializing in encoding, decoding, video capture, streaming, and other related services, has been targeted by the ransomware group Lockbit3. The attack was announced on the group's dark web leak site, and the victim's website is Osprey Video. Osprey Video operates in the Media & Internet sector and is known for its products designed for mission-critical applications, such as medical, avionics, and military applications.

The company's products are designed to withstand extreme environmental conditions and are known for their low latency video capture, which ensures minimal hardware latency and guarantees the highest level of security by not storing video information on the hardware. Osprey Video also focuses on extended product lifecycles, ensuring that key products are designed with a 10+ years production life cycle in mind.

Despite these security measures, Osprey Video has been targeted by Lockbit3, a ransomware group that has been active since around May 2022. The group typically targets and breaches a victim's IT infrastructure, steals and encrypts their data, and then demands payment to provide a decryption key and delete the stolen data.

The specific vulnerabilities that led to the attack on Osprey Video are not mentioned in the search results. However, it is known that Lockbit3 has been using open-source tools and frameworks in the initial access phase of their attacks, shifting away from custom-built implants. This suggests that the group may have exploited a vulnerability in Osprey Video's systems or used a known exploit to gain access.

The impact of the attack on Osprey Video is not clear, but ransomware attacks can cause significant disruption and financial damage to businesses, especially those that rely on critical infrastructure and mission-critical workflows.

The ransomware attack on Osprey Video highlights the need for companies to continuously assess the security controls of their supply-chain providers and contractors and hold them to high standards, as the attack surface and impact of bad actors gaining unauthorized access increases with the growing adoption of smart infrastructure.

Sources

• Lazarus Group's infrastructure reuse leads to discovery of new malware
• Throwback Attack: A ransomware attack shuts down the Parkview Medical Center IT networks
• Cyberattack affects Ardent Health hospitals in multiple states - YouTube
• Johnson Controls Cyberattack – Is Our Critical Infrastructure At Risk?