The Louis G Freeman Company Targeted by Play Ransomware Group

Company Profile

The Louis G Freeman Company, also known as the Freeman Company, is a leading provider of automation systems. They specialize in designing and implementing automation systems that improve efficiency, reduce costs, and enhance safety in various industries such as manufacturing, oil and gas, and power generation. The company is of medium size and has a substantial presence in the automation systems industry.

Attack Overview

The Louis G Freeman Company, a USA-based business, fell victim to a ransomware attack orchestrated by the cybercrime group Play. The attackers managed to exfiltrate sensitive data, including private and personal confidential information, client documents, budget details, payroll records, accounting data, contracts, tax information, IDs, and financial data. Despite the severity of the breach, specific details about the ransom demand remain undisclosed.

Ransomware Group Profile

The Play ransomware group, operated by Ransom House, is a significant player in the cybercrime landscape known for targeting Linux systems. Play ransomware, associated with the Babuk code, has evolved to target ESXi lockers. The group distinguishes itself by transitioning from data theft to deploying cryptographic lockers, showcasing a sophisticated evolution in ransomware tactics.

Company Vulnerabilities

The company's focus on automation systems and its substantial presence in various industries make it an attractive target for threat actors. The sensitive nature of the data they handle, including client documents and financial information, increases the company's vulnerability to ransomware attacks. Additionally, the company's reliance on digital solutions and technology services to enhance event experiences may have provided avenues for the ransomware group to penetrate their systems.

Sources:

• The Louis G Freeman Company Website
• SentinelOne - Play Ransomware Group Profile