Ransomware Attack on Len Dubois Trucking: Impact and Vulnerabilities

Incident Date:

April 16, 2024

World map



Ransomware Attack on Len Dubois Trucking: Impact and Vulnerabilities


Len Dubois Trucking Inc.




Winnipeg, Canada

, Canada

First Reported

April 16, 2024

Ransomware Attack on Len Dubois Trucking by BianLian Group

Company Profile

Len Dubois Trucking Inc., established in 1978, is a family-owned business based in Winnipeg, Manitoba. Specializing in long-haul trucking across North America, they provide full truckload, less-than-truckload (LTL), and temperature-controlled transportation services. As a notable entity in the transportation sector, they are recognized for their reliable and diverse freight solutions, catering to a broad range of customer needs across Canada and the United States.

Attack Overview

The ransomware attack on Len Dubois Trucking was orchestrated by the notorious BianLian group. During the breach, approximately 300 GB of sensitive data was exfiltrated. This data comprised personal information of employees and customers, detailed contract documents including NDAs, comprehensive financial records, accident logs, and extensive files from the CFO’s personal computer, among other operational and business documents.

Vulnerabilities and Targeting

The transportation sector, particularly companies like Len Dubois with extensive logistical data and cross-border operations, presents a lucrative target for cybercriminals such as BianLian. The company's significant data repositories, including personal and financial information, make it an attractive target for ransomware attacks aimed at extorting substantial ransoms. The integration of technology in their operations, while essential for modern logistics and communication, also increases vulnerability to cyber threats if not adequately protected.

Impact of the Attack

The breach not only risks severe financial repercussions for Len Dubois Trucking but also threatens substantial reputational damage. The exposure of sensitive employee and customer data can lead to legal consequences and erode trust in the company’s ability to safeguard personal information. Furthermore, the operational disruption caused by such attacks can lead to significant logistical challenges and service delays.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.