blackbasta attacks LokalTog

Incident Date: Jul 06, 2022

Attack Overview

VICTIM

LokalTog

INDUSTRY

Transportation

LOCATION

Denmark

ATTACKER

Blackbasta

FIRST REPORTED

July 6, 2022

Request Removal

BlackBasta Ransomware Attack on LokalTog

Company Overview

LokalTog, described as "Danmark's største" (Denmark's largest), operates 335 kilometers of tracks through Sjælland and Lolland-Falster. The company's mission is to connect local communities and provide unique experiences for its customers.

Vulnerabilities and Targeting

The transportation sector is increasingly becoming a prime target for ransomware attacks, with 45% of cyber attacks in the sector being ransomware-related. The European Union Agency for Cybersecurity (ENISA) has highlighted ransomware as the predominant threat to the rail sector, also accounting for 45% of cyber attacks.

Impact of the Attack

The attack on LokalTog by the BlackBasta ransomware group is part of a broader pattern of attacks targeting the transportation sector. Between February and July 2022, BlackBasta and BlackByte targeted 81 victim organizations, including notable companies within the transportation sector such as Deutsche Windtechnik, The Groupe Laiteries Réunies, Jacob Becker, and RadiciGroup, as reported by eSentire.

Mitigation Strategies

To defend against ransomware attacks, organizations are advised to enhance their cybersecurity posture. This includes conducting regular software updates, providing employee training on cybersecurity awareness, and implementing comprehensive backup and recovery strategies.

Sources

LokalTog. (n.d.). Lokal og Danmarks største. Retrieved April 10, 2024, from http://www.lokaltog.dk/
RailTech.com. (2023, March 24). What cyber attack risks do the railways face? Retrieved April 10, 2024, from https://www.railtech.com/digitalisation/2023/03/24/what-cyber-attack-risks-do-the-railways-face/
Infosecurity-Magazine. (2022, November 8). Conti Affiliates Black Basta, BlackByte Attack EU Critical Infrastructure. Retrieved April 10, 2024, from https://www.infosecurity-magazine.com/news/black-basta-blackbyte-attack-eu/
ENISA. (2023). ENISA THREAT LANDSCAPE: transport sector. Retrieved April 10, 2024, from https://www.enisa.europa.eu/publications/enisa-transport-threat-landscape/%40%40download/fullReport
RailJournal. (2023, March 22). EU cybersecurity agency reports on threat to rail. Retrieved April 10, 2024, from https://www.railjournal.com/technology/eu-cybersecurity-agency-reports-on-threat-to-rail/

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.