Ransomware Attack on Compagnie de Phalsbourg: A Wake-Up Call for the Real Estate Industry
Incident Date:
April 15, 2024
Overview
Title
Ransomware Attack on Compagnie de Phalsbourg: A Wake-Up Call for the Real Estate Industry
Victim
Compagnie de Phalsbourg
Attacker
3AM
Location
First Reported
April 15, 2024
Ransomware Attack on Compagnie de Phalsbourg by 3AM Group
Company Profile
Compagnie de Phalsbourg is a prominent real estate development, investment, and management company based in Paris, France. Founded in 1989 by Philippe Journo, the company has been influential in the French real estate market, focusing on large projects and refurbishment of existing retail zones. With a workforce of approximately 139 employees and a reported revenue of $32 million, Compagnie de Phalsbourg stands out due to its unique social vision and significant involvement in sponsorship actions within France.
Details of the Attack
The 3AM ransomware group, a relatively new player in the cyber threat landscape, has claimed responsibility for an attack on Compagnie de Phalsbourg. This group, which emerged in September 2023, has been noted for its use of the Rust programming language in its ransomware, which includes capabilities such as stopping services, deleting Volume Shadow copies, and selective file encryption.
Vulnerabilities and Industry Impact
Real estate companies like Compagnie de Phalsbourg often manage extensive amounts of sensitive data, including personal information of clients and detailed financial records, making them attractive targets for ransomware attacks. The industry's increasing reliance on digital technologies for property management and transactions further exposes them to cyber threats. The attack emphasizes the critical need for robust cybersecurity measures in the real estate sector.
Sources
- PitchBook Company Profile - PitchBook Company Profile
- COMPAGNIE DE PHALSBOURG Company Profile on Dun & Bradstreet - Dun & Bradstreet
- 3AM Ransomware Analysis - Security Affairs
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.