Seafrigo Group Hit by DragonForce Ransomware, 43 GB Data Exfiltrated

Incident Date:

June 12, 2024

World map

Overview

Title

Seafrigo Group Hit by DragonForce Ransomware, 43 GB Data Exfiltrated

Victim

Seafrigo

Attacker

Dragonforce

Location

Le Havre, France

, France

First Reported

June 12, 2024

Seafrigo Group Targeted by DragonForce Ransomware Attack

Company Overview

Seafrigo Group, a global logistics and supply chain company, specializes in the transportation, storage, and distribution of perishable goods. Founded in 1979 and headquartered in Switzerland, Seafrigo operates 28 offices across five continents, employing over 2,500 experts. The company is renowned for its temperature-controlled transportation and warehousing solutions, ensuring the quality and safety of food and beverage products throughout the supply chain.

Attack Overview

On June 23, 2024, the DragonForce ransomware group claimed responsibility for a cyberattack on Seafrigo Group. The hackers allegedly exfiltrated 43.01 GB of data, setting a ransom deadline for the same day. This attack underscores the vulnerabilities faced by large-scale logistics companies, particularly those handling sensitive and perishable goods.

Ransomware Group Profile

DragonForce is a ransomware group known for its dark web leak site, where it publishes data from its victims. The group’s tactics and operational model suggest a high level of sophistication, often emulating successful ransomware operations like LockBit. DragonForce's ability to penetrate cybersecurity defenses and exfiltrate significant amounts of data poses a substantial threat to targeted organizations.

Potential Vulnerabilities

Seafrigo's extensive global operations and reliance on advanced technology for real-time tracking and temperature control make it a prime target for ransomware attacks. The company's need for seamless customs clearance and regulatory compliance further complicates its cybersecurity landscape. The attack on Seafrigo highlights the critical importance of robust cybersecurity measures in protecting sensitive data and ensuring the integrity of supply chain operations.

Implications and Response

The attack on Seafrigo Group by DragonForce underscores the growing threat of ransomware in the logistics and supply chain sector. As companies like Seafrigo continue to leverage technology to optimize operations, they must also prioritize cybersecurity to safeguard against increasingly sophisticated cyber threats.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.