Ransomware Attack on Everbrite: A Manufacturing Sector Vulnerability

Overview

In a recent cyber attack, the ransomware group Play has targeted Everbrite, a leading provider of visual identification, outdoor signage, indoor signs & displays, menu systems, architectural & drive-thru elements, electronic displays, scoreboards, and LED lighting solutions.

With a rich history spanning over 95 years, Everbrite has been at the forefront of delivering cutting-edge visual identification solutions to top-tier companies globally. Employing between 501 to 1,000 individuals, the company boasts a robust presence in the North American market, supported by manufacturing facilities and sales offices strategically situated across the United States and Canada. Beyond North America, Everbrite's products are widely sold and distributed across Europe, Asia, and South America.

Implications

Play Ransomware gains initial access through valid accounts, exposed RDP servers, and exploiting vulnerabilities like FortiOS and Microsoft Exchange. The attackers susceptibilities have exploited these susceptibilities in Everbrite's systems, potentially gaining access to sensitive data and disrupting the company's operations.The ransomware attack on Everbrite is a reminder that no company is immune to cyber threats, especially those with a significant digital presence.

Sources

• Everbrite - Commercial Signage, LED Lighting, Scoreboards.
• Ransomware Play Group Hits: Everbrite.
• Everbrite, LLC - LinkedIn
• EverBrite - Rollins & Sons (London) Ltd
• Working At Everbrite: Company Overview and Culture - Zippia
• Everbrite, Inc. Better Business Bureau® Profile