lorenz attacks MEBULBS
Incident Date:
May 26, 2022
Overview
Title
lorenz attacks MEBULBS
Victim
MEBULBS
Attacker
Lorenz
Location
First Reported
May 26, 2022
MEBULBS: A Target for the Lorenz Ransomware Group
The manufacturing sector has recently experienced a cyber attack by the Lorenz ransomware group, targeting MEBULBS, a company known for its high-quality lighting products. MEBULBS, which has been in operation since 1974, offers a wide range of lighting solutions, from industrial to residential, and has been recognized for its commitment to energy efficiency and cost-effective lighting solutions.
The attack on MEBULBS was confirmed through a dark web leak site, where the ransomware group claimed responsibility for the attack. The company's website, provides information about their products and services, including LED tubes, fluorescent lighting, and various lighting fixtures.
Analysis of the Attack
The size of MEBULBS is not explicitly mentioned in the search results, but the company's longevity and wide range of products suggest a significant presence in the lighting industry. Their commitment to energy efficiency and cost-effective solutions has likely contributed to their success, making them a valuable target for cybercriminals seeking to disrupt their operations or extort money through ransomware attacks.
The vulnerabilities that led to MEBULBS being targeted by the Lorenz ransomware group are not explicitly stated in the search results. However, it is mentioned that the group uses a variety of tactics, including exploiting vulnerabilities and selling access to corporate networks to other cybercriminals. The attack on MEBULBS may have been facilitated by a vulnerability in their network or website, which the Lorenz group was able to exploit to gain access and deploy the ransomware.
The Lorenz ransomware group's attack on MEBULBS underscores the critical importance of robust cybersecurity measures within the manufacturing sector. Companies must prioritize the protection of their operations and customer data against such threats.
Sources
- "Understanding Ransomware and Strategies for Prevention and Response" - https://www.cisa.gov/uscert/ncas/tips/ST19-001
- "The State of Ransomware in the Manufacturing Industry: 2021" - https://www.sophos.com/en-us/medialibrary/PDFs/whitepaper/sophos-state-of-ransomware-in-manufacturing-wp.pdf
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.