lockbit2 attacks ymcad

Incident Date: Mar 12, 2022

Attack Overview

VICTIM

ymcad

INDUSTRY

Organizations

LOCATION

United Kingdom

ATTACKER

Lockbit

FIRST REPORTED

March 12, 2022

Request Removal

YMCA Derbyshire: A Non-Profit Targeted by Lockbit2 Ransomware

YMCA Derbyshire, a non-profit organization that supports individuals and communities in Derby and Derbyshire, has been targeted by the ransomware group Lockbit2. The organization, which has been in operation since 1847, focuses on key areas of work including Health and Wellbeing, Support and Advice, Family and Youth Work, Training and Education, and Housing.

YMCA Derbyshire serves more than 40 communities and employs over 2000 people, with a turnover of $70m a year. The organization's services include gymnastics classes, swimming lessons, camping, out-of-school-hour centres, and youth and community services. Despite its size and the critical nature of its services, YMCA Derbyshire had not considered itself a likely target for cyber attacks, given the assumption that not-for-profit organizations are less vulnerable.

The Lockbit2 ransomware attack on YMCA Derbyshire is not the first such incident in the YMCA network. In 2019, YMCA NSW, another YMCA organization, was hit with a ransomware attack that encrypted its operating system. The attack forced the organization to close its doors, affecting around 15,000 families in NSW.

The YMCA NSW incident serves as a reminder of the importance of robust cybersecurity measures, even for organizations that may not perceive themselves as high-risk targets. The YMCA NSW response involved a quick decision by the board not to pay the ransom, rebuilding systems from scratch, and restoring services using a cloud-based solution.

The Lockbit2 ransomware group has claimed responsibility for the attack on YMCA Derbyshire via their dark web leak site. The victim's website is http://www.ymcaderbyshire.org.uk/.

Sources

YMCA Derbyshire | Changing Lives in Derby and Derbyshire
Ransomware incident launched against YMCA of Greater Charlotte - WBTV https://www.wbtv.com/2021/09/14/ransomware-incident-launched-against-ymca-greater-charlotte/
Quick board response could save your organisation during a ransomware attack - AICD https://aicd.companydirectors.com.au/membership/the-boardroom-report/volume-18-issue-1/quick-board-response-could-save-your-organisation-during-a-ransomware-attack
Cyberattack: Charlotte YMCA targeted in ransomware incident | Charlotte Observer https://www.charlotteobserver.com/news/local/article254287783.html
Some members getting alerted about a September ransomware attack, Charlotte YMCA says - DataBreaches.net https://www.databreaches.net/some-members-getting-alerted-about-a-september-ransomware-attack-charlotte-ymca-says/

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.