Dassault Falcon Jet hit by Ragnar Locker ransomware gang

Dassault Falcon Jet has disclosed a data breach that exposed personal information belonging to current and former employees.

In December Dassault, Dassault Falcon Jet (DFJ) was the victim of a cyber attack that may have exposed personal information belonging to current and former employees.

The data security incident also exposed information belonging to employees’ spouses and dependents, states the notice of data breach sent by the US subsidiary of French aerospace company Dassault Aviation to its customers.

“on December 6, 2020, Dassault Falcon Jet Corp. discovered a data security incident affecting some of our systems and some of our subsidiaries (collectively, “Dassault Falcon Jet” or “we”).” states the notice. “Upon discovery of this security incident, we immediately took all affected systems offline and engaged third-party cybersecurity experts to aid in our investigation, as we work to safely restore our systems in a manner that protects the security of your information.”

The company has 2,453 employees and generated more than €7.3 billion in revenues in 2019.

The exposed for current and former employees includes name, personal and company email address, personal mailing address, employee ID number, driver’s license number, passport information, financial account number, Social Security number, date of birth, work location, compensation and benefit enrollment information, and date of employment.

The data breach noticed states that information regarding current or former employees’ spouses and dependents exposed in the incident may include name, address, date of birth, Social Security number, and benefit enrollment information.

According to the media, the data breach was the result of Ragnar Locker ransomware infection that also impacted the systems of several Dassault Falcon Jet subsidiaries.

I have found on the leak site of the Ragnar group some a specific section containing the links to the archives containing the alleged stolen files.

The company is investigating the incident with the support of the FBI, it also announced that it is taking steps to enhance its security program to prevent similar incidents in the future.

“In a number of cases, we have rebuilt systems anew to maintain our operations while the investigation continues.” continues the notice.

“As we restore and rebuild systems, we are also strengthening the security protections in place to protect those systems and the data stored on them,”

In November, the U.S. Federal Bureau of Investigation (FBI) issued a flash alert (MU-000140-MW) to warn private industry partners of an increase of the Ragnar Locker ransomware activity following a confirmed attack from April 2020.

If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, Dassault Falcon Jet)

[adrotate banner=”5″]

[adrotate banner=”13″]