Lacroix Group shut down three facilities after a ‘targeted cyberattack’

May 16, 2023  By Pierluigi Paganini


French electronics manufacturer Lacroix Group shut down three plants after a cyber attack, experts believe it was the victim of a ransomware attack.

The French electronics manufacturer Lacroix Group shut down three facilities in France, Germany, and Tunisia in response to a cyber attack. The group designs and manufactures electronic equipment for its customers in multiple sectors, including the automotive, aerospace, industrial, and health sectors. The company earned $770 million in 2022.

The company announced the closure of the plant on May 12, the response to the incident suggest it was the victim of a ransomware attack.

The company revealed to have detected a “targeted cyberattack” on its facilities, it has launched an investigation into the security breach to determine if attackers exfiltrated some data.

The company said that some local infrastructures have been encrypted. Lacroix plans to resume production on May 22, 2023.

“The time needed to carry out these actions and to use the backups to restart should take a few days, which is why the 3 sites are closed for the week.” reported Yahoo Finance.

“It should be noted that the activity of these three sites represents 19% of the group’s total sales in 2022. Moreover, given the favourable calendar with only 3 days of effective production this week on the French and German sites, LACROIX does not envisage at this stage any significant impact on the performances announced for the Group for the whole of 2023.”

At the time of this writing, no ransomware gang has claimed responsibility for the attack.

Last week, Swiss multinational company ABB, a leading electrification and automation technology provider, was the victim of a Black Basta ransomware attack.

The attack took place on May 7, 2023, and reportedly impacted the business operations of the company.

We are in the final!

Please vote for Security Affairs (https://securityaffairs.com/) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS
Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini

Please nominate Security Affairs as your favorite blog.

Nominate Pierluigi Paganini and Security Affairs here here: https://docs.google.com/forms/d/e/1FAIpQLSepvnj8b7QzMdLh7vWEDQDqohjBUsHyn3x3xRdYGCetwVy2DA/viewform

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, ransomware)



Pierluigi Paganini
Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.





You might also like





  • Digging the Deep Web: Exploring the dark side of the web

    Digging The Deep Web

  • Center for Cyber Security and International Relations Studies

  • Subscribe Security Affairs Newsletter

    newsletter

  • SecurityAffairs awarded as Best European Cybersecurity Tech Blog at European Cybersecurity Blogger Awards

    EU Sec Bloggers Awards 22


More Story

China-linked APT Mustang Panda targets TP-Link routers with a custom firmware implant

 China-linked APT group Mustang Panda employed a custom firmware implant targeting TP-Link routers in targeted attacks...