vicesociety attacks Est Ensemble

Incident Date:

April 28, 2022

World map



vicesociety attacks Est Ensemble


Est Ensemble




Gaston Roussel, France

romainville, France

First Reported

April 28, 2022

Est Ensemble Ransomware Attack

Est Ensemble, a media and internet sector company, has been targeted by the ransomware group Vicesociety. The attack was announced on the group's dark web leak site, and the victim's website is Est Ensemble, a collective of nine cities in the Seine-Saint-Denis region, home to 408,000 inhabitants. The company is recognized for its dedication to public services, engaging in various initiatives such as the promotion of urban cultures and the provision of seasonal jobs.

The ransomware attack on Est Ensemble signifies a broader trend of cybercriminals focusing their efforts on organizations within the media and internet sector. The repercussions of such attacks are severe, encompassing data loss, financial detriment, and damage to reputation. Although the specific ransomware variant used in this incident has not been disclosed, it is important to note that ransomware attacks are diverse in nature. One notable form is Ransomware as a Service (RaaS), which democratizes the ability to launch ransomware attacks, enabling individuals with minimal technical skills to perpetrate these cybercrimes.

To counteract the threat of ransomware, it is imperative for organizations to adopt comprehensive security strategies. These include conducting regular data backups, enforcing the use of strong passwords, and deploying security software. Additionally, educating employees on the dangers of phishing and other forms of social engineering is crucial in fortifying an organization's defense against cybercriminals.

The ransomware attack on Est Ensemble underscores the critical need for heightened awareness and preemptive actions to safeguard against cyber threats. This is especially true for entities operating in the media and internet sector, which are frequently targeted by cybercriminals aiming to exploit vulnerabilities for access to sensitive information.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.