lockbit3 attacks Over seas
Incident Date:
July 25, 2022
Overview
Title
lockbit3 attacks Over seas
Victim
Over seas
Attacker
Lockbit3
Location
First Reported
July 25, 2022
Overseas AST, a UAE-based Construction Company, Suffers Ransomware Attack by Lockbit3
Overseas AST, a construction company based in the United Arab Emirates, has been targeted by the ransomware group Lockbit3. The attack was announced on the group's dark web leak site, and the victim's website is overseas-ast.com. Overseas AST has a long history in the region, with over 50 years of experience, and is known for its successful track record and proven delivery model.
The company operates in the construction sector, which has been increasingly targeted by cybercriminals. In the United States, the maritime industry, which includes ports and land-side connections, has been under threat from both foreign states and ransomware groups. The construction sector is also vulnerable to cyberattacks, as it often relies on outdated systems and lacks the resources to invest in robust cybersecurity measures.
Overseas AST's website does not provide detailed information about the size of the company or its specific vulnerabilities. However, the company's reliance on outdated systems and lack of public information about its cybersecurity measures may have made it an attractive target for Lockbit3.
The ransomware group Lockbit3 is known for its prolific and harmful attacks, causing billions of euros worth of damage. The group operates in the ransomware-as-a-service (RaaS) model, where developers design the ransomware, recruit affiliates to deploy it, and maintain an online software dashboard to provide affiliates with the tools necessary to encrypt and steal data for which a ransom is demanded.
The attack on Overseas AST is a reminder of the importance of robust cybersecurity measures in the construction sector and other industries. Companies should invest in up-to-date systems, employee training, and incident response plans to mitigate the risk of ransomware attacks.
Sources
- Overseas AST - Innovation, Certainty, Reliability
- US ports, maritime cybersecurity threats 2024
- Law enforcement disrupt world's biggest ransomware operation
- BlackCat Ransomware Group Implodes After Apparent $22M Payment by Change Healthcare
- U.S. and U.K. Disrupt LockBit Ransomware Variant
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.