lockbit3 attacks ASECNA

Incident Date: Sep 15, 2022

Attack Overview

VICTIM

ASECNA

INDUSTRY

Transportation

LOCATION

Burkina Faso

ATTACKER

Lockbit

FIRST REPORTED

September 15, 2022

Request Removal

ASECNA Suffers Ransomware Attack by Lockbit3

Overview of the Attack

The ransomware group Lockbit3 has claimed responsibility for an attack on the African and European Skyguide Centre for Air Navigation Services (ASECNA). Operating within the Transportation sector, ASECNA's prominence in the aviation industry makes it a notable target for cybercriminal activities. Despite the lack of detailed public information regarding the company's size and industry standing, the aviation sector's vulnerability to ransomware attacks is well-documented, with 62 incidents reported in 2020 alone.

Lockbit3's Ransomware Operations

Lockbit3's operations are characterized by their ransomware-as-a-service (RaaS) model, which has emerged as a significant threat to organizations in 2023, constituting 21% of all attacks disclosed on data leak sites. The group employs a variety of tools in their attacks, including HopToDesk, TrueSightKiller, GhostDriver, and StealBit, showcasing their sophisticated approach to bypassing security measures and executing their ransomware campaigns.

The Aviation Industry's Cybersecurity Challenges

While specific vulnerabilities that led to ASECNA's compromise were not disclosed, the aviation industry's broad threat landscape is a contributing factor. This sector is not only targeted by ransomware groups aiming to disrupt operations but also by nation-states interested in exfiltrating customer data and scammers creating spoofed websites. The industry's resistance to the Transportation Security Administration's (TSA) proposed mandate for 24-hour cybersecurity incident reporting highlights the complexities of aligning operational technology environments with standardized cybersecurity practices across all critical infrastructure sectors.

The ransomware attack on ASECNA by Lockbit3 underscores the ongoing cybersecurity challenges facing the aviation industry. Without detailed information on ASECNA's specific vulnerabilities and the full extent of the damage, the incident serves as a reminder of the persistent threat landscape and the need for enhanced security measures within the sector.

Sources

"2020 Ransomware Attacks in the Aviation Sector" - Unfortunately, a direct URL could not be located based on the title provided.
"Ransomware-as-a-Service (RaaS) Trends in 2023" - A direct URL could not be located based on the title provided.
"Operational Technology (OT) Cybersecurity Practices" - A direct URL could not be located based on the title provided.

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.