High Performance Services Targeted in Play Ransomware Attack

Incident Date: May 07, 2024

Attack Overview

VICTIM

High Performance Services

INDUSTRY

Telecommunications

LOCATION

USA

ATTACKER

Play

FIRST REPORTED

May 7, 2024

Request Removal

Ransomware Attack on High Performance Services

Victim Profile

High Performance Services, LLC is a full-service wireless telecommunication project management and site acquisition firm based in Lafayette, Louisiana. Founded in 2013, the company operates in the Southeast United States and Puerto Rico, offering services such as project management, site candidate identification, leasing, and zoning and permitting. With an estimated revenue of $10.6 million and 11-50 employees, High Performance Services stands out in the industry for its expertise in wireless infrastructure projects.

Ransomware Attack Details

The ransomware group known as "Play" targeted High Performance Services' website, resulting in the compromise of sensitive information including client documents, budgets, payroll, accounting records, contracts, tax information, IDs, and financial data. The specific details of the ransom demand, exfiltrated data amount, and attack technique have not been disclosed.

Ransomware Group Profile

The Play ransomware group, operated by Ransom House, is known for targeting Linux systems and has evolved from data theft to deploying cryptographic lockers. The group utilizes encryption methods similar to Baseline Babuk and provides explicit instructions to victims through a detailed ransom note. Play ransomware actors have been observed submitting binaries containing hack tools and utilities after gaining initial access, showcasing a sophisticated approach to ransomware attacks.

Company Vulnerabilities

High Performance Services' focus on wireless telecommunication projects and the sensitive nature of the data they handle make them an attractive target for threat actors. The company's involvement in site acquisition, project management, and leasing activities may expose them to vulnerabilities in their systems, potentially allowing ransomware groups like Play to exploit weaknesses and compromise their data.

Sources:

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.