lockbit2 attacks Safarni

Incident Date: May 09, 2022

Attack Overview

VICTIM

Safarni

INDUSTRY

Education

LOCATION

South Africa

ATTACKER

Lockbit

FIRST REPORTED

May 9, 2022

Request Removal

Safarni, a Flight Booking Engine, Targeted by Lockbit2 Ransomware Group

Company Size and Industry Standing

Safarni operates within the Education sector, a prime target for ransomware attacks due to the sensitive data involved. Although specific details regarding the company's size and industry standing are not disclosed on its website, Safarni is recognized for its global flight booking engine that aggregates flights from various sources to offer the best prices to its customers.

Vulnerabilities and Targeting

The ransomware attack on Safarni underscores the vulnerabilities present in companies within the Education sector. Ransomware groups frequently target entities holding sensitive data, leveraging the potential for high ransom demands in return for not disseminating the data or disrupting operations. The breach at Safarni likely involved exploiting system vulnerabilities or employing social engineering tactics to infiltrate their network.

Previous Attacks and Mitigation

Prior incidents involving Safari, the browser utilized by Safarni, have seen scareware campaigns that falsely accuse users of accessing illegal content to extort money. These instances, while not true ransomware attacks, employ intimidation tactics to provoke payment from users before they can assess the actual threat. To counter such threats, it is imperative for companies to update their systems regularly and educate their workforce on the dangers of engaging with suspicious links or downloading unverified software.

The Lockbit2 attack on Safarni accentuates the critical need for cybersecurity measures within the Education sector, especially for entities managing sensitive data. Staying abreast of emerging threats and adopting comprehensive security protocols can significantly enhance an organization's defense against ransomware and other cyber threats.

Sources

Hijacked default search engine in Safari - Malwarebytes Forums
Ransomware scammers exploited Safari bug to extort porn-viewing iOS users - ZDNet
Updating Apple iOS will protect you from this fake ransomware attack - Macworld
MacOS - Malware in Safari Cache! : r/antivirus - Reddit
Ransomware Attacks: Get Ahead of Them Today | Safari Solutions - Safari Solutions

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.