DragonForce Ransomware Hits BK Aerospace: 19.43 GB Data at Risk

Incident Date: Jul 25, 2024

Attack Overview

VICTIM

BK Aerospace

INDUSTRY

Manufacturing

LOCATION

USA

ATTACKER

Dragonforce

FIRST REPORTED

July 25, 2024

Request Removal

DragonForce Ransomware Attack on BK Aerospace

Overview of BK Aerospace

BK Aerospace, officially registered as B-K Manufacturing Co., Inc., is a third-generation family-owned business established in 1967. Located in Arab, Alabama, the company specializes in engineering, manufacturing, testing, and assembly services for complex hardware, primarily serving the aerospace, defense, and commercial sectors. BK Aerospace is renowned for its innovative solutions, extensive experience, and strong commitment to quality, which has enabled it to secure numerous contracts, including those related to American space exploration and military operations.

Details of the Ransomware Attack

Recently, BK Aerospace fell victim to a ransomware attack orchestrated by the DragonForce group. The attackers claim to have infiltrated the company's systems and gained access to 19.43 GB of sensitive data. DragonForce has threatened to publish this data within the next 9-10 days if their demands are not met, putting significant pressure on BK Aerospace to respond swiftly to mitigate potential damage.

About DragonForce Ransomware Group

DragonForce is a relatively new ransomware group that emerged in late 2023. They are known for using a double extortion tactic, which involves encrypting victims' data and exfiltrating sensitive data, threatening to release it publicly if the ransom is not paid. DragonForce has claimed attacks against various industries across the US, UK, Australia, Singapore, and other countries. Their ransomware code is based on a leaked builder from the infamous LockBit ransomware group, suggesting they leveraged this code to quickly develop and deploy their own ransomware.

Potential Vulnerabilities and Penetration Methods

BK Aerospace's extensive experience and reputation in the aerospace and defense sectors make it a high-value target for ransomware groups like DragonForce. The company's reliance on advanced manufacturing techniques and engineering expertise may have created vulnerabilities that threat actors could exploit. While the exact method of penetration is not disclosed, it is likely that DragonForce used phishing attacks, exploiting software vulnerabilities, or leveraging weak security protocols to gain access to BK Aerospace's systems.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.