Meow Ransomware Hits Van's Lumber: 120GB Data Compromised
Incident Date:
August 26, 2024
Overview
Title
Meow Ransomware Hits Van's Lumber: 120GB Data Compromised
Victim
Vans Lumber and Custom Builders
Attacker
Meow
Location
First Reported
August 26, 2024
Ransomware Attack on Van's Lumber & Custom Builders by Meow Ransomware Group
Van's Lumber & Custom Builders, a family-owned construction company based in Dyckesville, Wisconsin, has recently fallen victim to a ransomware attack orchestrated by the notorious Meow ransomware group. This attack has compromised over 120 GB of sensitive data, including client information, financial records, blueprints, and other confidential files.
Company Overview
Established in 1950, Van's Lumber & Custom Builders specializes in custom residential and light commercial construction projects. The company has built a strong reputation for delivering high-quality construction services throughout Northeast Wisconsin, particularly in Door, Kewaunee, and Brown Counties. With a workforce of approximately 19 to 200 employees, Van's Lumber is known for its commitment to quality craftsmanship and customer satisfaction. The company also operates a full-service building center, providing materials and expert advice for various construction needs.
Details of the Attack
The Meow ransomware group has demanded a ransom of $20,000 in exchange for the decryption of the compromised data. The attack has put the company's operations and client relationships at risk, threatening to undermine the trust and reputation Van's Lumber has built over decades. The stolen data includes scanned payment documents, architectural drawings, 3D models, and other critical information.
About Meow Ransomware Group
Meow ransomware emerged in late 2022 and has been associated with the Conti v2 ransomware variant. The group is known for targeting industries with sensitive data, such as healthcare and medical research. Meow ransomware employs various infection methods, including phishing emails, exploit kits, Remote Desktop Protocol (RDP) vulnerabilities, and malvertising. Once a system is compromised, the ransomware encrypts files using a combination of the ChaCha20 and RSA-4096 algorithms. The group maintains a data leak site where they list victims who have not paid the ransom.
Potential Vulnerabilities
Van's Lumber & Custom Builders, like many small to medium-sized enterprises, may have been targeted due to potential vulnerabilities in their cybersecurity infrastructure. The construction industry often deals with sensitive client information and proprietary data, making it an attractive target for ransomware groups. The use of outdated software, lack of regular security updates, and insufficient employee training on phishing attacks could have contributed to the successful breach by the Meow ransomware group.
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.