alphv attacks Creos Luxembourg

Incident Date: Jul 29, 2022

Attack Overview

VICTIM

Creos Luxembourg

INDUSTRY

Energy, Utilities & Waste

LOCATION

Luxembourg

ATTACKER

Alphv

FIRST REPORTED

July 29, 2022

Request Removal

Creos Luxembourg Suffers Ransomware Attack by Alphv Group

Company Overview

Creos Luxembourg, a key player in the Energy, Utilities & Waste sector, operates as a natural gas pipeline and electricity network provider within Luxembourg. As a subsidiary of the Encevo Group, it extends its services across Luxembourg, Germany, France, Belgium, and the Netherlands, covering the entire energy value chain from production and storage to distribution and services.

Attack Details

The cyberattack initiated on July 22, 2024, led to significant data inaccessibility and the exfiltration of files from Creos Luxembourg's systems. The full extent of the compromised information remains undetermined. As a precautionary measure, Encevo has recommended that users change their passwords on its websites.

Alphv Group

Known in the cyber underworld as Alphv or BlackCat, this ransomware group has been operational since November 2021. It is believed to have connections with the BlackMatter and DarkSide ransomware factions. Alphv has a notorious reputation for targeting a wide range of organizations globally, employing file-encrypting malware to leverage stolen data.

Impact and Response

Despite the severity of the attack, the supply of electricity and natural gas to Creos Luxembourg's customers remains unaffected. Encevo is in the process of identifying the impacted parties and has established a bilingual web page for incident updates. The company has also engaged law enforcement to aid in the ongoing investigation.

Vulnerabilities

The attack's success can be attributed to unspecified vulnerabilities, which may include software flaws, outdated systems, or human errors such as phishing or weak password practices. These vulnerabilities are common entry points for ransomware attacks.

The ransomware attack on Creos Luxembourg by the Alphv group underscores the persistent cyber threat facing critical infrastructure sectors. Despite heightened security measures and law enforcement efforts, ransomware groups continue to pose a formidable risk to the industrial and energy sectors.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.