DMF Lighting Targeted by Qilin Ransomware in Major Data Breach

Incident Date: Nov 21, 2024

Attack Overview

VICTIM

DMF Lighting

INDUSTRY

Manufacturing

LOCATION

USA

ATTACKER

Qilin

FIRST REPORTED

November 21, 2024

Request Removal

DMF Lighting Falls Victim to Qilin Ransomware Attack

DMF Lighting, a leading manufacturer of innovative LED downlighting solutions, has become the latest victim of a ransomware attack orchestrated by the notorious Qilin group. The attack, which occurred on November 22, resulted in the theft of over 600 GB of sensitive data, including project details, financial statements, and client information.

Company Profile

Founded in 1988 by Mark and Faye Danesh, DMF Lighting has grown from a small home-based operation into a prominent player in the lighting industry. The company, headquartered in Carson, California, employs approximately 122 people and reported an annual revenue of $54.3 million. DMF Lighting is renowned for its modular LED downlighting technology, which offers flexibility in design and installation, catering to both residential and commercial markets. Their commitment to quality, performance, and customer service has established them as an industry leader.

Qilin Ransomware Group

Qilin, a Ransomware-as-a-Service (RaaS) group, emerged in July 2022 and has since been linked to over 60 confirmed attacks. The group is known for its advanced encryption techniques and cross-platform adaptability, targeting Windows, Linux, and VMware ESXi environments. Qilin affiliates gain initial access through spear phishing and exploiting vulnerabilities in systems like Citrix ADC and RDP. The group's ability to customize ransomware for specific targets makes it a formidable threat in the cybersecurity landscape.

Vulnerabilities and Penetration

DMF Lighting's reliance on advanced technology and extensive data storage made it an attractive target for Qilin. The group's use of spear phishing and exploitation of known vulnerabilities likely facilitated their penetration into DMF's systems. The attack underscores the importance of cybersecurity measures, particularly for companies in the manufacturing sector that handle large volumes of sensitive data.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.