Mark Thomas Company Hit by Lynx Ransomware Attack

Incident Date: Nov 14, 2024

Attack Overview

VICTIM

Mark Thomas

INDUSTRY

Law Firms & Legal Services

LOCATION

USA

ATTACKER

Lynx

FIRST REPORTED

November 14, 2024

Request Removal

Ransomware Attack on Mark Thomas & Company by Lynx Group

On November 15, Mark Thomas & Company, a well-established firm in the civil engineering and construction sector, fell victim to a ransomware attack orchestrated by the Lynx group. This incident highlights the growing threat of ransomware attacks on businesses across various industries.

About Mark Thomas & Company

Mark Thomas & Company, based in San Jose, California, is renowned for its expertise in civil and structural engineering, land surveying, landscape architecture, and urban design. Established in 1927, the company has built a reputation for delivering high-quality projects that emphasize community engagement and environmental sustainability. With an annual revenue of $36.3 million and a workforce of approximately 399 to 455 employees, Mark Thomas & Company is a significant player in the engineering sector. The firm's commitment to innovative solutions and collaboration with local stakeholders sets it apart in the industry.

Details of the Attack

The Lynx ransomware group claimed responsibility for the attack, releasing sample screenshots of compromised data on their dark web portal. While the full extent of the data leak remains undisclosed, the breach underscores the vulnerabilities that even well-established companies face in the digital age. The attack on Mark Thomas & Company is part of a broader trend of ransomware groups targeting small and medium-sized businesses across North America and Europe.

Profile of the Lynx Ransomware Group

Lynx is a relatively new ransomware group that emerged in July, quickly gaining notoriety for its aggressive tactics and double extortion methods. The group employs a ransomware-as-a-service model, allowing other cybercriminals to utilize its ransomware for a fee. Lynx distinguishes itself by using advanced encryption algorithms and maintaining both clear web and dark web leak sites to coerce victims into paying ransoms. The group's connection to the INC Ransom group, with significant code similarities, highlights the evolving landscape of cyber threats.

Potential Vulnerabilities

Mark Thomas & Company's focus on community-oriented projects and sustainable practices may not have shielded it from cyber threats. The company's reliance on digital systems for project management and stakeholder collaboration could have presented vulnerabilities that the Lynx group exploited. The attack serves as a reminder of the importance of cybersecurity measures, even for companies with a strong industry reputation.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.