Ransomware Attack Hits Gortemoller Engineering: Lynx Group Claims

Incident Date: Aug 29, 2024

Attack Overview

VICTIM

Gortemoller Engineering (gorteng.local)

INDUSTRY

Construction

LOCATION

USA

ATTACKER

Lynx

FIRST REPORTED

August 29, 2024

Request Removal

Ransomware Attack on Gortemoller Engineering by Lynx Group

Gortemoller Engineering, Inc. (GE), a civil engineering firm based in Panama City Beach, Florida, has recently fallen victim to a ransomware attack orchestrated by the Lynx group. The attack was publicly claimed by Lynx on their dark web leak site, where they provided sample screenshots as evidence of the breach.

About Gortemoller Engineering

Founded in 2002 by Dexter Gortemoller, Gortemoller Engineering specializes in civil, environmental, industrial, and transportation design. The firm has established itself as a key player in Northwest Florida and Southern Alabama, serving both private entities and local government agencies. Despite its relatively small size, with fewer than 25 employees, GE has completed projects valued at over $157 million and constructed more than 126 miles of roadway. The company is known for its commitment to quality design and strong client relationships.

Details of the Attack

The Lynx ransomware group claims to have infiltrated Gortemoller Engineering's systems, encrypting files and stealing sensitive data. The attackers appended the encrypted files with a .LYNX extension and left a ransom note instructing the company to contact them via TOR. This breach poses significant risks to the confidentiality and integrity of GE's information, potentially impacting their operations and client trust.

About Lynx Ransomware Group

Lynx is a double-extortion ransomware group that emerged in August. They have been actively targeting multiple companies, avoiding sectors like government, healthcare, and non-profits. Lynx distinguishes itself by not only encrypting files but also stealing data to pressure victims into paying the ransom. The group uses sophisticated infiltration techniques, which may include phishing, exploiting vulnerabilities in software, or leveraging weak security protocols.

Potential Vulnerabilities

Gortemoller Engineering's relatively small size and the nature of their operations may have made them an attractive target for Lynx. Smaller firms often have fewer resources to dedicate to cybersecurity, making them more vulnerable to sophisticated attacks. Additionally, the sensitive nature of the data handled by GE, including project plans and client information, increases the potential impact of such breaches.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.