Lacroix Group shut down three facilities after a targeted cyberattack

Lacroix Group shut down three facilities after a ‘targeted cyberattack’

Pierluigi Paganini May 16, 2023

French electronics manufacturer Lacroix Group shut down three plants after a cyber attack, experts believe it was the victim of a ransomware attack.

The French electronics manufacturer Lacroix Group shut down three facilities in France, Germany, and Tunisia in response to a cyber attack. The group designs and manufactures electronic equipment for its customers in multiple sectors, including the automotive, aerospace, industrial, and health sectors. The company earned $770 million in 2022.

The company announced the closure of the plant on May 12, the response to the incident suggest it was the victim of a ransomware attack.

The company revealed to have detected a “targeted cyberattack” on its facilities, it has launched an investigation into the security breach to determine if attackers exfiltrated some data.

The company said that some local infrastructures have been encrypted. Lacroix plans to resume production on May 22, 2023.

“The time needed to carry out these actions and to use the backups to restart should take a few days, which is why the 3 sites are closed for the week.” reported Yahoo Finance.

“It should be noted that the activity of these three sites represents 19% of the group’s total sales in 2022. Moreover, given the favourable calendar with only 3 days of effective production this week on the French and German sites, LACROIX does not envisage at this stage any significant impact on the performances announced for the Group for the whole of 2023.”

At the time of this writing, no ransomware gang has claimed responsibility for the attack.

Last week, Swiss multinational company ABB, a leading electrification and automation technology provider, was the victim of a Black Basta ransomware attack.

The attack took place on May 7, 2023, and reportedly impacted the business operations of the company.

We are in the final!

Please vote for Security Affairs (https://securityaffairs.com/) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS
Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini

Please nominate Security Affairs as your favorite blog.

Nominate Pierluigi Paganini and Security Affairs here here: https://docs.google.com/forms/d/e/1FAIpQLSepvnj8b7QzMdLh7vWEDQDqohjBUsHyn3x3xRdYGCetwVy2DA/viewform

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, ransomware)

Pierluigi Paganini August 07, 2025

Over 100 Dell models exposed to critical ControlVault3 firmware bugs

Pierluigi Paganini August 07, 2025