Ransomware Attack on JE Owens & Company by Play Group

Company Profile

JE Owens & Company, based in Orlando, Florida, is a small accounting firm with a team of 7 employees and an annual revenue ranging up to $1M. Specializing in accounting services, the firm offers expertise in business consulting, tax preparation, and financial planning. The company is known for its personalized service, focusing on tax savings and CFO services for small businesses. The firm is led by Jack Owens, who has over 25 years of experience in the field.

Details of the Attack

The Play ransomware group, a known cybercrime entity targeting Linux systems, has claimed responsibility for the attack on JE Owens & Company. The attack was announced on the group's dark web leak site. According to the group, they have exfiltrated 204 GB of sensitive data, including personal data, financial records, contracts, and NDAs.

Vulnerabilities and Target Selection

The company's small size and industry sector make it a potential target for ransomware attacks. Small businesses often have limited cybersecurity resources and measures, which can make them vulnerable to such attacks. Additionally, as an accounting firm, JE Owens & Company handles sensitive financial data, making it a lucrative target for cybercriminals seeking to exploit such information for ransom.

Sources

• JE Owens & Company Official Website
• SentinelOne Labs
• Sophos News
• TechTarget SearchSecurity
• UK Parliament Publications
• Checkpoint Cyber Hub