RansomHub Ransomware Hits The Fence Authority: Data Compromised
RansomHub Ransomware Attack on The Fence Authority
The Fence Authority, a prominent fence company based in Pennsylvania, has recently fallen victim to a ransomware attack orchestrated by the cybercriminal group RansomHub. Established in 1996, The Fence Authority is known for its extensive inventory of quality fencing products, including ActiveYards aluminum and vinyl fences, as well as Cedartech wood fencing. The company serves both residential and commercial markets, offering a wide selection of fencing options and custom solutions.
Company Profile and Industry Standing
The Fence Authority operates from its headquarters in West Chester, Pennsylvania, and employs approximately 29 to 72 individuals. The company has built a reputation for excellent customer service and craftsmanship over its nearly three decades of operation. It stands out in the industry for its commitment to eco-sustainability, planting a tree for every wooden fence constructed. The Fence Authority's use of modern technology, such as an online tool for visualizing fencing projects, further enhances customer engagement.
Attack Overview
The ransomware attack has compromised various critical files, including commission pay records, contact information, HR documents, installer pay details, insurance files, logistics data, monthly inventory sheets, phone records, permit documents, and use tax files from 2020 to 2023. The total size of the compromised data amounts to over 102 billion bytes, indicating a significant breach that could disrupt operations and potentially expose sensitive information. The Fence Authority is now faced with the challenge of addressing this security breach and mitigating its impact on their business and customers.
RansomHub: A Formidable Ransomware Group
RansomHub, a Ransomware-as-a-Service (RaaS) group, first appeared in February 2024. It quickly gained notoriety by adopting a highly adaptable and aggressive affiliate model. The group is known for its speed and efficiency, using advanced data exfiltration techniques and intermittent encryption to minimize encryption time while maintaining impact. RansomHub's ransomware is optimized to encrypt large datasets quickly and targets a wide range of cross-platform systems, including Windows, Linux, and ESXi.
Penetration and Vulnerabilities
RansomHub affiliates primarily use phishing campaigns, vulnerability exploitation, and password spraying to gain initial access. The group has also leveraged zero-day vulnerabilities to penetrate systems. In the case of The Fence Authority, the attack likely exploited unpatched systems or weak security protocols, allowing the ransomware to infiltrate and compromise critical data. The company's reliance on digital tools and extensive data storage made it a lucrative target for the ransomware group.
See Halcyon in action
Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!