Supply Chain Vulnerability: Peter Condakes Company Targeted by Ransomware

Incident Date:

April 24, 2024

World map



Supply Chain Vulnerability: Peter Condakes Company Targeted by Ransomware


Peter Condakes Company, Inc.


Black Suit


Everett, USA

Massachusetts, USA

First Reported

April 24, 2024

Ransomware Attack on Peter Condakes Company by BlackSuit Group

Company Overview

Peter Condakes Company, Inc., a prominent distributor of fresh produce in New England, has been targeted by the ransomware group BlackSuit. Established in 1900 and based in Everett, Massachusetts, the company has evolved from a small pushcart operation to a major supplier in the grocery and related product merchant wholesaler industry. With an employee range of 21-50 and annual revenues between $5 million to $10 million, the company plays a critical role in the supply chain of fruits and vegetables across New England and the Canadian Maritimes.

The company's significant presence in the New England Produce Center and Boston Market Terminal highlights its importance in regional food distribution, making it a notable target for cybercriminal activities.

Attack Overview

The BlackSuit ransomware group, which surfaced in 2023 and shows strong affiliations with the Royal ransomware group, has claimed responsibility for the attack on Peter Condakes Company. This group targets both Windows and Linux systems, including critical infrastructure like VMware ESXi servers. The ransomware encrypts files, appending a .blacksuit extension, and leaves a ransom note titled README.BlackSuit.txt directing victims to a Tor chat site for negotiations.


The attack on Peter Condakes Company underscores the vulnerability of supply chain entities, particularly those with significant roles in food distribution. The operational disruption could potentially lead to delays or shortages in the supply of fresh produce, affecting supermarkets, food service providers, and restaurants relying on timely deliveries. Moreover, the breach of sensitive company data could lead to further financial and reputational damage.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.