Metaencryptor Ransomware Group Targets Jetson Specialty Marketing Services, Inc.
Incident Date:
May 7, 2024
Overview
Title
Metaencryptor Ransomware Group Targets Jetson Specialty Marketing Services, Inc.
Victim
Jetson Specialty Marketing Services, Inc.
Attacker
MetaEncryptor
Location
First Reported
May 7, 2024
Ransomware Attack on Jetson Specialty Marketing Services, Inc.
Victim Profile
Jetson Specialty Marketing Services, Inc. (JSM) is a full-service direct marketing communications company headquartered in Kutztown, Pennsylvania. They have over 60 years of experience in delivering advanced technology and industry-leading solutions. JSM assists clients in acquiring new customers and building profitable, long-term relationships through their integrated platform designed for reduced time to market and improved ROI. Their services include analytics, database management, direct mail, critical communications, digital variable print production, postal optimization, piece-level tracking, and response processing.
Company Overview
JSM stands out in the industry for their commitment to customer care and high-security standards. They operate under the highest security standard available in the industry, the Payment Card Industry (PCI) Level 1 security standard. The company serves various industries such as finance, healthcare, telecommunications, publishing, insurance, retail, automotive, utilities, government services, and nonprofit organizations.
Vulnerabilities
Being a company that deals with sensitive customer data and operates in various industries, JSM is a prime target for threat actors. Their extensive database management and direct mail services make them vulnerable to cyber attacks, especially ransomware attacks that aim to encrypt data and demand ransom for its release.
Ransomware Group Attack
Metaencryptor is a ransomware group that has claimed responsibility for the attack on JSM. They are known for utilizing a data leak site and encrypting data to extort victims. The attacker exfiltrated 103 GB of data from JSM's website. The group has been linked to other ransomware operations, such as LostTrust, indicating a rebranding strategy. Metaencryptor distinguishes itself through its use of ransomware techniques and data exfiltration methods to target organizations like JSM.
Sources:
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.