Dassault Falcon Jet hit by Ragnar Locker ransomware gang

Dassault Falcon Jet has disclosed a data breach that exposed personal information belonging to current and former employees.

In December Dassault, Dassault Falcon Jet (DFJ) was the victim of a cyber attack that may have exposed personal information belonging to current and former employees.

The data security incident also exposed information belonging to employees’ spouses and dependents, states the notice of data breach sent by the US subsidiary of French aerospace company Dassault Aviation to its customers.

“on December 6, 2020, Dassault Falcon Jet Corp. discovered a data security incident affecting some of our systems and some of our subsidiaries (collectively, “Dassault Falcon Jet” or “we”).” states the notice. “Upon discovery of this security incident, we immediately took all affected systems offline and engaged third-party cybersecurity experts to aid in our investigation, as we work to safely restore our systems in a manner that protects the security of your information.”

The company has 2,453 employees and generated more than €7.3 billion in revenues in 2019.

The exposed for current and former employees includes name, personal and company email address, personal mailing address, employee ID number, driver’s license number, passport information, financial account number, Social Security number, date of birth, work location, compensation and benefit enrollment information, and date of employment.

The data breach noticed states that information regarding current or former employees’ spouses and dependents exposed in the incident may include name, address, date of birth, Social Security number, and benefit enrollment information.

According to the media, the data breach was the result of Ragnar Locker ransomware infection that also impacted the systems of several Dassault Falcon Jet subsidiaries.

I have found on the leak site of the Ragnar group some a specific section containing the links to the archives containing the alleged stolen files.

The company is investigating the incident with the support of the FBI, it also announced that it is taking steps to enhance its security program to prevent similar incidents in the future.

“In a number of cases, we have rebuilt systems anew to maintain our operations while the investigation continues.” continues the notice.

“As we restore and rebuild systems, we are also strengthening the security protections in place to protect those systems and the data stored on them,”

In November, the U.S. Federal Bureau of Investigation (FBI) issued a flash alert (MU-000140-MW) to warn private industry partners of an increase of the Ragnar Locker ransomware activity following a confirmed attack from April 2020.

If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, Dassault Falcon Jet)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.