revil attacks Carrier Midea

Incident Date:

September 1, 2022

World map



revil attacks Carrier Midea


Carrier Midea




Mumbai, India

Maharashtra, India

First Reported

September 1, 2022

Carrier Midea India Suffers Ransomware Attack

Company Overview

Carrier Midea India, a prominent entity in the HVAC (Heating, Ventilating, and Air Conditioning) industry, serves the Indian market with a diverse array of air conditioning solutions. The company's official website highlights their product offerings and their dedication to delivering exceptional value to their customers.

Industry Context

The manufacturing sector is increasingly becoming a focal point for ransomware attacks, attributed to its global operational scope, minimal tolerance for operational disruptions, and the critical data stored on its servers. In 2023, the sector ranked third in the number of ransomware incidents managed by Arctic Wolf Incident Response (IR) teams and fourth in business email compromise (BEC) incidents.


Several factors contribute to the manufacturing industry's susceptibility to ransomware attacks. The proliferation of connected devices, extensive global supply chains, outdated systems with unpatched vulnerabilities, and industrial Internet of Things (IoT) devices present significant security challenges. These elements collectively create an environment ripe for exploitation by cyber adversaries.


While specific details regarding the financial impact of the ransomware attack on Carrier Midea India remain undisclosed, the average cost of such incidents in the manufacturing sector is estimated at $500,000 USD. This incident serves as a stark reminder of the substantial financial and operational risks ransomware poses to the manufacturing industry.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.