Lynx Ransomware Hits UK Survey Firm Plowman Craven

Incident Date: Nov 07, 2024

Attack Overview

VICTIM

Plowman Craven

INDUSTRY

Business Services

LOCATION

United Kingdom

ATTACKER

Lynx

FIRST REPORTED

November 7, 2024

Request Removal

Ransomware Attack on Plowman Craven by Lynx Group

Plowman Craven, a leading UK-based surveying and consultancy firm, has recently been targeted by the Lynx ransomware group. This attack highlights the growing cybersecurity threats facing companies in the surveying and infrastructure sectors.

About Plowman Craven

Founded in 1964, Plowman Craven is a prominent player in the surveying industry, known for its innovative use of technology and comprehensive service offerings. The company employs over 170 individuals and provides a wide range of services, including aerial surveys, structural monitoring, and Building Information Modeling (BIM). With a strong presence in the UK and recent expansions into Australia and plans for North America, Plowman Craven is recognized for its commitment to quality and innovation.

Details of the Attack

The Lynx ransomware group has claimed responsibility for the attack on Plowman Craven, which involved the encryption and exfiltration of sensitive data. The attack underscores the vulnerabilities that firms managing critical data and infrastructure face. While specific details of the breach remain undisclosed, the incident has raised concerns about the security measures in place to protect client data and maintain operational integrity.

Profile of Lynx Ransomware Group

Lynx ransomware, emerging in mid-2024, operates under a Ransomware-as-a-Service (RaaS) model. It is believed to be a rebranding of the INC ransomware group, sharing similar source code. Lynx primarily targets Windows environments, employing both single and double extortion techniques. The group is known for its sophisticated phishing campaigns and malicious downloads as initial infection vectors. Despite claims to avoid certain sectors, Lynx's strategy is designed to maximize disruption and pressure victims into paying ransoms.

Potential Vulnerabilities

Plowman Craven's reliance on advanced technologies and extensive data management makes it a lucrative target for ransomware groups like Lynx. The firm's global expansion and diverse client base further increase its exposure to cyber threats. This incident serves as a reminder of the critical importance of cybersecurity measures to protect sensitive data and maintain business continuity.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.