Pierluigi Paganini
October 04, 2021
LockBit 2.0 ransomware operators hit the Israeli aerospace and defense firm E.M.I.T. Aviation Consulting Ltd, threat actors claim to have stolen data from the company and are threatening to leak them on the dark web leak site of the group in case the company will not pay the ransom.
E.M.I.T. Aviation Consulting Ltd was founded in 1986, the company design and assemble complete aircraft, tactical and sub tactical UAV systems, and mobile integrated reconnaissance systems.
At the time of this writing, the ransomware gang has yet to share any files as proof of the attack, the countdown will end on 07 October 2021.
It is not clear how the threat actors breached the company and when the security breach took place.
Like other ransomware operations, LockBit 2.0 implemented a ransomware-as-a-service model and maintains a network of affiliates.
The LockBit ransomware gang has been active since September 2019, in June the group announced the LockBit 2.0 RaaS.
After ransomware ads were banned on hacking forum, the LockBit operators set up their own leak site promoting the latest variant and advertising the LockBit 2.0 affiliate program.
The group is very active in this period, the list of recent victims includes Riviana, Wormington & Bollinger, Anasia Group, Vlastuin Group, SCIS Air Security, Peabody Properties, DATA SPEED SRL, Island independent buying group, Day Lewis, Buffington Law Firm and tens of other companies worldwide.
In August, the Australian Cyber Security Centre (ACSC) has warned of escalating LockBit 2.0 ransomware attacks against Australian organizations starting July 2021.
Follow me on Twitter: @securityaffairs and Facebook
| [adrotate banner=”9″] | [adrotate banner=”12″] |
(SecurityAffairs – hacking, E.M.I.T. Aviation Consulting)
[adrotate banner=”5″]
[adrotate banner=”13″]
