The LockBit ransomware group continues to be one of the most active extortion gangs in the threat landscape. This week the gang claimed to have hacked the Commission des services electriques de Montréal (CSEM).
The Commission des services électriques de Montréal (CSEM) is a public agency responsible for the undergrounding of electrical wires in the city of Montreal, Quebec, Canada. It was created in 1910 by a partnership between the city and the private sector.
The CSEM’s mission is to provide a safe, reliable, and sustainable underground electrical network for the city of Montreal. The main activities carried out by the organization are planning and coordinating the undergrounding of electrical wires, managing and maintaining the underground electrical network, and providing information and education about underground electrical networks.
CSEM confirmed the security breach, the company confirmed the attack took place on August 3rd, 2023. The Canadian company confirmed that it has refused to pay the ransom.
The organization immediately launched an investigation into the security breach with the help of law enforcement in Quebec. At the time of this writing, CSEM has recovered impacted systems.
The LockBit ransomware group published the stolen data on August 30, 2023.
The organizations attempted to downplay the impact of the security breach explaining that CSEM projects are the subject of public documents.
“It should be noted that all CSEM projects are the subject of public documents. Therefore, all these plans – engineering, construction and management – are already publicly available through the official process offices in Quebec.” states the company.
Since August 1st, the LockBit 3 operation has already hit 140 organizations worldwide.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, Lockbit 3.0)
Microsoft Patch Tuesday security updates for May 2024 fixed 59 flaws across various products including…
VMware fixed four flaws in its Workstation and Fusion desktop hypervisors, including three zero-days exploited…
The non-profit technology organization MITRE released the EMB3D threat model for embedded devices used in…
Google released emergency security updates to address an actively exploited Chrome zero-day vulnerability. Google has…
Experts reported that since April, the Phorpiex botnet sent millions of phishing emails to spread…
Apple rolled out urgent security updates to address code execution vulnerabilities in iPhones, iPads, and…
This website uses cookies.