LockBit 3.0 Ransomware Attack on Eviivo Limited

Incident Date: May 07, 2024

Attack Overview

VICTIM

Eviivo Limited

INDUSTRY

Hospitality

LOCATION

United Kingdom

ATTACKER

Lockbit

FIRST REPORTED

May 7, 2024

Request Removal

Ransomware Attack on Eviivo Limited by LockBit 3.0

Victim Profile

Eviivo Limited, a leading hospitality software company based in the United Kingdom, was recently targeted in a cyberattack by the LockBit 3.0 ransomware group. Eviivo specializes in providing software solutions for independent accommodations, helping manage guests, bookings, and online travel agencies like Airbnb, Booking.com, Expedia, and Vrbo.

Company Size and Standout Features

Eviivo Limited, the legal entity associated with Eviivo, had 473 employees as of December 23, 2003, and generated $17.9 million in revenue as of March 31, 2017. The company stands out in the hospitality tech industry for its innovative functionality and improved booking management experience, being the first all-in-one booking management platform for independent accommodation providers.

Vulnerabilities and Attack Details

LockBit 3.0, a Ransomware-as-a-Service (RaaS) group known for its advanced capabilities, targeted Eviivo Limited in a recent cyberattack. The ransomware encrypts files, modifies their filenames, changes the desktop wallpaper, and drops a ransom note on the victim's desktop. LockBit 3.0 is heavily obfuscated and protected against analysis, making it challenging for security researchers to study.

The LockBit ransomware group operates under a Ransomware-as-a-Service (RaaS) model, allowing other cybercriminals to use their malware for attacks. LockBit 3.0 has been used to target a wide range of organizations globally, including major companies like Boeing and the US division of the Chinese bank ICBC. Cybersecurity agencies consider LockBit 3.0 to be more "modular and evasive" than previous ransomware variants, making it harder to detect and defend against.

LockBit May Attacks

This is part of the May 2024 attacks by LockBit3.0, a cybercriminal group that resurfaced with vigor following the disruption of its infrastructure during "Operation Cronos." Despite law enforcement efforts, LockBit swiftly returned, targeting over 50 victims within hours of reactivating its platform. The group's adaptability and global reach showcase the challenges in combating cybercrime effectively.

Sources:

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.