Ransomware Attack on RIGCON PTY. LTD. by DragonForce

Attack Overview

RIGCON PTY. LTD., an Australian engineering services company, was recently targeted in a ransomware attack by the cybercrime group DragonForce. The attack involved the exfiltration of approximately 2.72 GB of data from their systems.

Company Profile

The company specializes in rotor blade maintenance and height safety solutions. The company employs between 51-200 individuals and reported an annual revenue of $4 million in 2023. They are recognized for its comprehensive services in training, servicing, repairing, installing, and inspecting height safety systems, making it a notable entity in the engineering services sector.

Vulnerabilities and Industry Standing

RIGCON's prominence in the niche market could make it an attractive target for cybercriminals looking to exploit specialized industrial knowledge and client data. The size of the company and its significant role in safety-critical services potentially increases its risk profile, as disruptions could lead to severe consequences in client operations and safety standards.

Ransomware Threat: DragonForce

DragonForce is known for its double extortion tactics, involving data encryption and the threat of data leakage to extort ransom from its victims. This group has been active since late 2023 and has been involved in several high-profile attacks across different sectors. The use of a leaked ransomware builder from another notorious group, LockBit, suggests a high level of sophistication and adaptability in their operations.

Sources

• RIGCON PTY. LTD. Official Website
• Endole Suite - RIGCON Limited Company Profile
• SGPGrid - RIGCON PTY. LTD. Company Details
• LinkedIn - RIGCON PTY. LTD. Profile