Le Vian Jewelry Company Targeted in Ransomware Attack by BlackBasta

Incident Date: May 20, 2024

Attack Overview

VICTIM

Le Vian

INDUSTRY

Retail

LOCATION

USA

ATTACKER

Blackbasta

FIRST REPORTED

May 20, 2024

Request Removal

Le Vian Jewelry Company Targeted in Ransomware Attack by BlackBasta

Victim Overview

Le Vian, a renowned family-owned jewelry company with a rich history dating back to the 15th century, has recently become the target of a ransomware attack by the cybercrime group BlackBasta. The company is known for its innovative designs, particularly in the use of natural fancy-color diamonds and gemstones, and is famous for popularizing the term "Chocolate Diamonds."

The company specializes in creating high-end jewelry pieces, including rings, necklaces, bracelets, and earrings. The company's commitment to quality, unique designs, and philanthropic efforts has set it apart in the jewelry industry.

Attack Overview

The ransomware attack on Le Vian occurred in May 2024, with BlackBasta managing to exfiltrate 800GB of data from the company's systems. This data included sensitive information related to the company's operations, as well as potentially personal data of employees and customers. The attack was discovered on May 21, 2024, highlighting the ongoing threats faced by organizations from sophisticated ransomware groups.

Ransomware Group: BlackBasta

BlackBasta is a ransomware operator and Ransomware-as-a-Service (RaaS) criminal enterprise that emerged in early 2022. The group is known for its targeted attacks on organizations in various countries, employing double extortion tactics to extort ransom payments from victims. BlackBasta has targeted over 500 organizations worldwide and has made significant financial gains from its ransomware operations.

Penetration and Vulnerabilities

The ransomware group distinguishes itself through its sophisticated tactics, including initial access through spear-phishing campaigns, insider information, and lateral movement within target networks. The group utilizes tools like QakBot and Cobalt Strike Beacons to maintain control over compromised systems and exfiltrate sensitive data before encrypting files. Le Vian's vulnerabilities may have included gaps in their cybersecurity defenses, allowing BlackBasta to infiltrate their systems and carry out the ransomware attack.

Sources:

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.