VStar Entertainment Group Hit by LockBit 3.0 Ransomware Attack

Incident Date:

May 9, 2024

World map

Overview

Title

VStar Entertainment Group Hit by LockBit 3.0 Ransomware Attack

Victim

VStar Entertainment Group

Attacker

Lockbit3

Location

Fridley, USA

Minnesota, USA

First Reported

May 9, 2024

Ransomware Attack on VStar Entertainment Group

Victim Profile

VStar Entertainment Group, a leading entertainment company based in the U.S., specializes in creating unforgettable live experiences for audiences worldwide. With over 36,000 performances in 40+ countries annually, the company offers a comprehensive solution for theatrical shows, interactive exhibits, and experiential events. VStar Entertainment Group is known for its production development, tour management, booking, and marketing services.

Company Standout

The company stands out for its extensive experience in event production and management, presenting popular tours like PAW Patrol Live! and Bubble Guppies Live. The company's ability to deliver high-quality entertainment experiences to diverse audiences has solidified its position in the entertainment industry.

Attack Details

The cyberattack on VStar Entertainment Group's website involved the exfiltration of approximately 4.7 GB of sensitive data, including financial records, databases, invoices, and personal records. The attackers, using the LockBit 3.0 ransomware, leaked a sample of the exfiltrated data, highlighting the severity of the breach and the potential consequences for the company.

Company Vulnerabilities

As a prominent entertainment company with a significant online presence, VStar Entertainment Group may be targeted by threat actors due to the sensitive data it holds. The company's wide reach and engagement with millions of guests annually make it an attractive target for cybercriminals seeking to exploit vulnerabilities in its systems.

Ransomware Group Distinction

The LockBit 3.0 ransomware group, known for its advanced capabilities and evasive techniques, poses a significant threat to organizations like VStar Entertainment Group. With features like file encryption, desktop modifications, and lateral movement through networks, LockBit 3.0 is a sophisticated ransomware variant that can cause extensive damage to its victims. The group's Ransomware-as-a-Service model allows other cybercriminals to leverage their malware for attacks, increasing the reach and impact of their operations.

Sources:

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.