PGF Technology Group: A Victim of Cyber Extortion by Akira

Incident Date:

April 8, 2024

World map



PGF Technology Group: A Victim of Cyber Extortion by Akira


PGF Technology Group




Rochester Hills, USA

Michigan, USA

First Reported

April 8, 2024

Ransomware Attack on PGF Technology Group

In April 2024, the cybercriminal group Akira initiated a ransomware assault on the company, purportedly seizing financial documents, HR data, employee particulars, and other sensitive information.

Victim Profile

PGF Technology Group, a company specializing in electronic assemblies manufacturing, including printed circuit board assembly, cable and wire harness assembly, and box build assembly, has been targeted by the Akira ransomware group. The company has been in business for 52 years and is known for its high-quality production of cable assemblies that perform reliably in various environments. PGF Technology Group has a team of 50 employees and prides itself on using state-of-the-art machinery and equipment.

Company Size and Industry Standing

While search results indicate that PGF Technology Group has 50 employees, LinkedIn lists the company size as between 51-200 employees, suggesting recent growth. The company has completed over 10 million assemblies, showcasing its extensive experience in the industry. PGF Technology Group is an ISO 9001:2015 and ISO 13485:2016 solution provider, emphasizing quality, service, and competitive pricing in the manufacturing sector.

Vulnerabilities and Targeting

The Akira ransomware group, known for targeting small to medium-sized businesses, has attacked PGF Technology Group, encrypting files and demanding ransoms. Akira is observed using various tools to gain initial access, establish persistence, and exfiltrate data for double-extortion purposes. PGF Technology Group's commitment to technology and significant revenue stream from manufacturing services may have made them a target for data thieves.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.