Ransomware Attack on Manufacturing Network Pte Ltd by 3AM Group
Incident Date:
September 30, 2024
Overview
Title
Ransomware Attack on Manufacturing Network Pte Ltd by 3AM Group
Victim
Manufacturing Network Pte Ltd
Attacker
3AM
Location
First Reported
September 30, 2024
Ransomware Attack on Manufacturing Network Pte Ltd by 3AM Group
Manufacturing Network Pte Ltd (MNPL), a prominent player in Singapore's manufacturing sector, has recently fallen victim to a ransomware attack orchestrated by the 3AM group. The attack, discovered on October 1, has raised concerns about the vulnerabilities faced by companies in the manufacturing industry.
About Manufacturing Network Pte Ltd
Established in November 2000, MNPL specializes in the import, export, and processing of non-ferrous metals, with a strong focus on aluminum alloys. The company operates metal service centers that stock, distribute, and cut aluminum alloy plates, sheets, and extrusion bars. MNPL's commitment to high-quality materials and precision engineering has positioned it as a significant player in the aluminum alloy market in Singapore. The company's ability to provide tailored solutions through its service centers makes it a versatile entity in the industry.
Attack Overview
The ransomware attack on MNPL was claimed by the 3AM group, a relatively new threat actor in the cybercrime landscape. The extent of the data leak remains unclear, but the company's website, mnpl.com.sg, was identified as part of the compromised assets. The attack highlights the vulnerabilities that manufacturing companies face, particularly those with significant digital footprints and reliance on IT infrastructure for operations.
About the 3AM Ransomware Group
The 3AM group has distinguished itself by targeting sectors such as manufacturing, leveraging sophisticated techniques to infiltrate networks. The group is known for employing double extortion tactics, where data is exfiltrated before encryption, and victims are threatened with data publication unless a ransom is paid. The group's ability to penetrate systems often involves exploiting weak credentials and using phishing campaigns to gain initial access.
Potential Vulnerabilities
MNPL's reliance on digital systems for inventory management and customer service may have made it an attractive target for the 3AM group. The company's extensive network of international suppliers and clients could also present additional entry points for cybercriminals. The attack underscores the importance of comprehensive cybersecurity measures, particularly for companies in the manufacturing sector that handle sensitive data and rely on continuous operations.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.