lorenz attacks Hensoldt Inc.
Incident Date:
January 11, 2022
Overview
Title
lorenz attacks Hensoldt Inc.
Victim
Hensoldt Inc.
Attacker
Lorenz
Location
First Reported
January 11, 2022
Hensoldt Inc. Suffers Ransomware Attack by Lorenz Group
Hensoldt Inc., a company specializing in military and defense electronics, has been targeted by the Lorenz ransomware group. The attack was announced on the group's dark web leak site, and the victim's website is Hensoldt operates in the Government sector and has been affected by the ransomware attack, which has led to the leak of sensitive data on the dark web.
Company Overview
Hensoldt Inc. is a subsidiary of Northern Defense Industries LLC (NDI), an AMS Group, Inc. company. The company is known for providing shipboard TRS-3D and TRS-4D radar aftermarket support, including spare parts, repairs, and services.
Industry Standout
Hensoldt Inc. is a significant player in the defense electronics industry, providing critical support to military and defense organizations. The company's expertise in radar systems and aftermarket support is essential for maintaining the functionality of these systems, which are crucial for national security and defense operations.
Vulnerabilities
The ransomware attack on Hensoldt Inc. highlights the vulnerabilities of companies in the defense and military sectors to cyber threats. The attackers exploited a weakness in Hensoldt's systems, allowing them to encrypt the company's files and demand a ransom for their release. This incident underscores the importance of robust cybersecurity measures to protect sensitive data and prevent such attacks in the future.
Ransomware Threat Landscape
Ransomware attacks have become increasingly prevalent, with 71% of organizations worldwide experiencing at least one ransomware attack in 2022. The average total cost of an attack hit an astounding $4.3 million, demonstrating the significant financial impact these attacks can have on businesses.
Lorenz Ransomware Group
The Lorenz ransomware group is known for its aggressive tactics, including data exfiltration and double extortion, where victims are threatened with the public release of their stolen data if the ransom is not paid. The group has targeted a wide range of critical infrastructure sectors, including the Defense Industrial Base (DIB), Food and Agriculture, and Information Technology sectors.
Mitigation Strategies
To mitigate the risks of ransomware attacks, organizations should implement robust cybersecurity measures, such as regular software updates, employee training, and the use of backup systems. Additionally, companies should be prepared to respond quickly and effectively to any potential attack, including having a well-defined incident response plan in place.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.