RansomHub Ransomware Disrupts INIA Spanish Research
RansomHub Ransomware Attack on INIA: A Critical Disruption in Spanish Agricultural Research
The Instituto Nacional de Investigación y Tecnología Agraria y Alimentaria (INIA), a leading public research institution in Spain, has fallen victim to a ransomware attack by the notorious RansomHub group. This attack, initiated on November 12, has severely disrupted INIA's operations, affecting over 600 employees and halting critical research activities.
About INIA
INIA, operating under the Spanish Ministry of Science and Innovation, is a prominent entity in the agrifood and forestry research sector. With a workforce of between 1,001 and 5,000 individuals, the institute is dedicated to advancing agricultural science and technology. It plays a crucial role in addressing challenges such as climate change and food security through its structured research framework, which includes centers focused on forest ecosystems, animal health, and plant genetic resources.
Attack Overview
The ransomware attack by RansomHub has encrypted critical data and exfiltrated 112 GB of sensitive information. The group has set a ransom deadline for December 17, threatening to publish the data if their demands are unmet. The attack has brought essential operations, including procurement and data sharing, to a standstill, significantly impacting projects on genetic editing and conservation of endangered species.
RansomHub's Modus Operandi
RansomHub, a Ransomware-as-a-Service group, emerged in February 2024 and quickly established itself as a formidable threat. Known for its aggressive affiliate model, the group employs double extortion tactics, encrypting data and exfiltrating sensitive information to increase pressure on victims. RansomHub's ransomware is optimized for speed and efficiency, targeting cross-platform systems and exploiting vulnerabilities in unpatched systems.
Sources
See Halcyon in action
Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!