LockBit3 Ransomware Attack on Highways Infrastructure Trust

Incident Date:

May 27, 2024

World map

Overview

Title

LockBit3 Ransomware Attack on Highways Infrastructure Trust

Victim

Highways Infrastructure Trust

Attacker

Lockbit3

Location

Mumbai, India

, India

First Reported

May 27, 2024

Ransomware Attack on Highways Infrastructure Trust by LockBit3

Victim Overview

The Highways Infrastructure Trust is an infrastructure investment trust focused on highways infrastructure projects in India. As part of the National Highways Infra Trust (NHIT), the Trust plays a significant role in the development and management of highways in the country.

Company Profile

The Highways Infrastructure Trust is a prominent player in the Indian infrastructure sector, with a strong focus on highways development. While specific details about the company's size and revenue are not publicly disclosed, it is part of a larger organization with a substantial portfolio of highway projects.

Standout Features

What makes the Highways Infrastructure Trust stand out in the industry is its dedicated focus on highways infrastructure projects, contributing to the growth and maintenance of critical transportation networks in India.

Vulnerabilities

Given its role in the transportation sector, the Highways Infrastructure Trust is susceptible to cyber threats like ransomware attacks due to the critical nature of its operations. The trust's involvement in infrastructure projects and management of highways makes it an attractive target for threat actors aiming to disrupt essential services.

Attack Overview

The LockBit3 ransomware group targeted highwaystrust.com, the official website of the Highways Infrastructure Trust. This attack led to the leakage of sample data from the company's systems, potentially compromising sensitive information.

Ransomware Group Profile

The LockBit3 ransomware group, also known as LockBit Black, operates as a Ransomware-as-a-Service (RaaS) and has evolved from earlier versions of LockBit. Renowned for its advanced capabilities and evasive tactics, LockBit3 targets a broad spectrum of organizations globally, including those in critical infrastructure.

Penetration Method

LockBit3 distinguishes itself with sophisticated encryption techniques and obfuscation methods designed to evade detection and analysis by security researchers. The ransomware group may have infiltrated the Highways Infrastructure Trust's systems through phishing emails, vulnerable software, or by exploiting weaknesses in the company's network security.

Sources:

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.