Akira Group Ransomware Strikes Vodotehnika D.D.
Ransomware Attack on Vodotehnika D.D. by Akira Group
On January 20, 2025, Vodotehnika D.D., a prominent Croatian company specializing in plumbing and construction services, allegedly fell victim to a ransomware attack orchestrated by the notorious Akira group. This incident highlights the ongoing threat posed by ransomware actors targeting businesses across various sectors.
Company Profile and Industry Standing
Vodotehnika D.D., headquartered in Zagreb, Croatia, is a well-established player in the construction sector, particularly recognized for its expertise in water-related infrastructure projects. The company offers a comprehensive range of services, including the design and construction of water supply installations, drainage systems, and water treatment facilities. With a workforce of approximately 100-249 employees, Vodotehnika has carved a niche in the Croatian market, maintaining strategic partnerships with international manufacturers and suppliers.
Attack Overview
The Akira ransomware group, known for its sophisticated tactics and high-profile targets, claimed responsibility for the attack on Vodotehnika. The attackers have threatened to release sensitive corporate documents, including internal financial records and personal identification documents of employees and customers. This breach poses significant risks to the company's operational integrity and the privacy of its stakeholders.
Akira Ransomware Group
Emerging in March 2023, Akira has quickly established itself as a formidable ransomware entity. Operating under a Ransomware-as-a-Service (RaaS) model, Akira employs a double extortion strategy, encrypting data and threatening exposure unless a ransom is paid. The group is known for its technical sophistication, utilizing advanced encryption methods and targeting sectors with high-stakes data, such as healthcare and finance.
Sources
See Halcyon in action
Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!