Followmont Transport Hit by Akira Ransomware Attack

Incident Date: Nov 13, 2024

Attack Overview

VICTIM

Followmont Transport Pty Ltd

INDUSTRY

Agriculture

LOCATION

Australia

ATTACKER

Akira

FIRST REPORTED

November 13, 2024

Request Removal

Ransomware Attack on Followmont Transport by Akira Group

Followmont Transport Pty Ltd, a leading logistics company in Australia, has fallen victim to a ransomware attack orchestrated by the notorious Akira group. This incident highlights the vulnerabilities faced by companies in the logistics sector, particularly those with extensive data and operational dependencies.

Company Overview

Established in 1984, Followmont Transport is a family-owned business based in Queensland, Australia. The company specializes in express road freight services, catering to both urban and rural areas across Queensland and Northern New South Wales. With a fleet of over 1,000 vehicles and a workforce of approximately 305 employees, Followmont is known for its commitment to customer service and its ability to deliver time-sensitive goods to remote locations. The company reported an annual revenue of $136.6 million, underscoring its significant presence in the logistics industry.

Details of the Attack

The Akira ransomware group claims to have exfiltrated 230 GB of sensitive data from Followmont Transport. The compromised data reportedly includes non-disclosure agreements, passports, driver licenses, medical documents, and financial information. Despite the breach, Followmont's systems remain operational, and the company has taken immediate steps to notify relevant authorities. Followmont is actively monitoring its network and has advised against accessing the threat actor's leak site.

About Akira Ransomware Group

Akira emerged in March 2023 as a Ransomware-as-a-Service (RaaS) entity, employing a double extortion model. The group is known for its sophisticated encryption techniques and potential ties to the former Conti group. Akira targets sectors with high-stakes data, including healthcare, finance, and logistics, using advanced methods to penetrate systems. The group has developed a Rust-based variant for Linux, enhancing its cross-platform capabilities.

Potential Vulnerabilities

Followmont Transport's extensive data and operational dependencies make it an attractive target for ransomware groups like Akira. The company's reliance on digital tools for service delivery and operational efficiency may have exposed vulnerabilities that Akira exploited. The attack underscores the importance of effective cybersecurity measures, particularly for companies with significant data assets and operational reach.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.