Ransomware Hits Atlantic Coast Consulting by Meow Group
Incident Date:
October 10, 2024
Overview
Title
Ransomware Hits Atlantic Coast Consulting by Meow Group
Victim
Atlantic Coast Consulting Inc
Attacker
Meow
Location
First Reported
October 10, 2024
Ransomware Attack on Atlantic Coast Consulting Inc. by Meow Group
Atlantic Coast Consulting Inc. (ACC), a veteran-owned firm specializing in environmental and engineering services, has become the latest victim of a ransomware attack by the notorious Meow Ransomware group. The attack has compromised over 30 GB of sensitive data, posing a significant threat to the company's operations and reputation.
Company Profile and Industry Standing
Founded in 2005, ACC operates from its headquarters in Roswell, Georgia, with additional offices in Savannah, Georgia, and Knoxville, Tennessee. The firm is recognized for its expertise in solid waste management, offering services such as design, permitting, construction administration, and environmental monitoring. ACC's commitment to providing dependable environmental solutions has earned it a reputation as a reliable partner in addressing complex environmental challenges. The company employs between 10 to 19 people and generates an estimated revenue of $1 million to $5 million annually, allowing it to remain agile while competing with larger firms.
Details of the Ransomware Attack
The Meow Ransomware group has listed ACC on its dark web leak site, offering the stolen data for sale. The compromised information includes employee records, client details, banking documents, tax reports, and personal identification data. The attackers are demanding $40,000 for exclusive access or $20,000 for shared access to the data. This breach exposes critical insights into ACC's operations, which could be of substantial interest to environmental professionals and business analysts.
About Meow Ransomware Group
Meow Ransomware emerged in late 2022 and is associated with the Conti v2 ransomware variant. The group is known for targeting industries with sensitive data, primarily in the United States. They employ various infection methods, including phishing emails and exploiting Remote Desktop Protocol vulnerabilities. Meow Ransomware encrypts files using a combination of the ChaCha20 and RSA-4096 algorithms, leaving behind a ransom note instructing victims to contact them for decryption.
Potential Vulnerabilities and Penetration Methods
ACC's focus on environmental and engineering services may have made it an attractive target due to the sensitive nature of its data. The firm's reliance on digital systems for managing client information and project data could have been exploited by the Meow group through phishing or exploiting system vulnerabilities. The attack underscores the importance of cybersecurity measures, especially for firms handling critical environmental data.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.