vicesociety attacks Optionis

Incident Date:

January 27, 2022

World map

Overview

Title

vicesociety attacks Optionis

Victim

Optionis

Attacker

Vicesociety

Location

Park Square, United Kingdom

Warrington, United Kingdom

First Reported

January 27, 2022

Optionis Ransomware Attack: A Cybersecurity Perspective

Company Overview

Since its inception in 1985, Optionis has grown to employ over 350 professionals throughout the UK, aiming to lead the market in providing secure, compliant, and trusted Umbrella payroll solutions alongside Accountancy and Tax services. These offerings are designed to meet the comprehensive needs of their clientele, which includes contractors, freelancers, sole traders, and small businesses.

Vulnerabilities and Impact

The ransomware attack perpetrated by the Vice Society has significantly impacted Optionis' operations, disrupting access to critical systems. This disruption has left contractors without access to their timesheets, leading to a prolonged network outage. Moreover, the attack has raised concerns over potential data breaches, putting thousands of contractors, freelancers, and SMEs at risk of losing access to essential documents such as P45s.

Response and Mitigation

While Optionis has not disclosed detailed information regarding their response to the ransomware attack or the specific mitigation measures implemented, it is noteworthy that the company has achieved Cyber Essentials PLUS certification. This certification represents the highest level of recognition within the Cyber Essentials scheme, a government-backed, industry-supported initiative aimed at bolstering cyber security defenses.

The ransomware attack on Optionis underscores the critical need for robust cybersecurity defenses within the Business Services sector. It is imperative for companies to continuously evaluate and enhance their security measures to safeguard against such threats, thereby ensuring the protection of their clients and the continuity of their operations.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.