ragnarlocker attacks Prudential LTG.
Incident Date:
June 24, 2022
Overview
Title
ragnarlocker attacks Prudential LTG.
Victim
Prudential LTG.
Attacker
Ragnarlocker
Location
First Reported
June 24, 2022
Prudential LTG Suffers Ransomware Attack by Ragnarlocker Group
Overview of the Incident
Prudential LTG, a prominent entity within the Manufacturing sector, recently fell victim to a ransomware attack orchestrated by the Ragnarlocker group. This incident was publicly disclosed on the group's dark web leak site. Prudential LTG, established in 1955, is a family-owned business renowned for its dedication to American manufacturing principles, adhering to the Build America, Buy America Act (BABAA). The company specializes in various lighting techniques and proudly states its compliance with BABAA on its official website.
Company Profile and Impact
Despite the absence of explicit details regarding the size of Prudential LTG, its longstanding operation since 1955 and commitment to American manufacturing underscore its significant role in the sector. The company's focus on manufacturing standard fixtures that comply with BABAA highlights its contribution to the industry.
Attack Details and Vulnerabilities
The specific vulnerabilities exploited in the ransomware attack on Prudential LTG remain undisclosed. However, it is known that the attackers managed to compromise some of Prudential Financial's systems on February 4, 2024. This breach suggests potential lapses in the company's security measures that facilitated the attackers' access.
Ragnarlocker and Its Connections
Ragnarlocker, while not extensively documented in available search results, is believed to be associated with the BlackCat/Alphv ransomware group. This connection is drawn from instances where BlackCat/Alphv has claimed responsibility for cyberattacks on entities such as LoanDepot and Prudential Financial. The group's rebranding to Ragnarlocker does not diminish its notoriety, given its involvement in over 60 breaches globally, targeting large corporations.
Prudential LTG's encounter with the Ragnarlocker ransomware group marks a significant cybersecurity event within the manufacturing sector. The lack of detailed information on the vulnerabilities exploited and the precise nature of the attack underscores the need for enhanced security protocols and vigilance among similar entities.
Sources
- "Build America, Buy America Act (BABAA)" - https://www.congress.gov/bill/117th-congress/house-bill/3684/text
- "Ransomware: Understanding the Risk" by Liam O'Murchu - https://www.symantec.com/content/dam/symantec/docs/security-center/white-papers/ransomware-understanding-the-risk-16-en.pdf
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.