Vidisco Ltd Hit by Major Ransomware Attack from Handala Hack Group
Incident Date:
September 19, 2024
Overview
Title
Vidisco Ltd Hit by Major Ransomware Attack from Handala Hack Group
Victim
Vidisco Ltd
Attacker
Handala
Location
First Reported
September 19, 2024
Ransomware Attack on Vidisco Ltd by Handala Hack Group
Vidisco Ltd, a leading Israeli company specializing in portable digital X-ray inspection systems, has recently fallen victim to a ransomware attack orchestrated by the Handala Hack group. The attackers claim to have exfiltrated 8 TB of highly sensitive data, including agent names, customer emails, backdoor and software source codes, and financial documents. This breach has significant implications, given Vidisco's critical role in security and non-destructive testing (NDT) applications.
About Vidisco Ltd
Founded in 1988, Vidisco Ltd is renowned for its innovative portable digital X-ray systems, which are extensively used in explosive ordnance disposal (EOD) and improvised explosive device (IED) detection. The company's technology is optimized for harsh field conditions, ensuring reliability and durability. Vidisco's products are utilized by military and security organizations in over 75 countries, including the US Air Force and the Israeli Defense Forces (IDF). The company employs approximately 40 individuals and generates over 98% of its sales from exports.
Attack Overview
The Handala Hack group has claimed responsibility for the ransomware attack on Vidisco Ltd, asserting that they have exfiltrated 8 TB of sensitive data. The compromised information reportedly includes agent names, customer emails, backdoor and software source codes, and financial documents. The group has also insinuated connections to Mossad and suggested they possess clandestine access to airport security checks. This breach could have severe repercussions for Vidisco's clients and partners, given the sensitive nature of the data involved.
About Handala Hack Group
Handala Hack is a cybercriminal organization known for its pro-Palestinian agenda and history of targeting Israeli institutions and their affiliates. The group has been involved in various high-profile cyberattacks, including breaches of Israel's radar systems and the Iron Dome missile defense systems. Handala Hack is notorious for its sophisticated phishing campaigns and multi-stage loading processes, which allow them to bypass traditional security measures.
Potential Vulnerabilities
Vidisco Ltd's extensive involvement in security and military applications makes it a prime target for threat actors like Handala Hack. The company's reliance on digital technologies and the sensitive nature of its data further exacerbate its vulnerability. The attackers may have penetrated Vidisco's systems through sophisticated phishing campaigns or exploiting vulnerabilities in their software infrastructure. The breach underscores the importance of stringent cybersecurity measures, especially for companies operating in critical sectors.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.