Ransomware Attack Hits Jackson Paper Manufacturing in North Carolina

Incident Date: Sep 20, 2024

Attack Overview

VICTIM

Jackson Paper Manufacturing

INDUSTRY

Manufacturing

LOCATION

USA

ATTACKER

Play

FIRST REPORTED

September 20, 2024

Request Removal

Ransomware Attack on Jackson Paper Manufacturing by Play Ransomware Group

Jackson Paper Manufacturing, a leading producer of recycled containerboard based in Sylva, North Carolina, has been targeted by the Play ransomware group. The attack was disclosed on September 23, 2024, via the group's dark web leak site.

About Jackson Paper Manufacturing

Established in 1995, Jackson Paper Manufacturing is a prominent player in the recycled paper industry. The company operates a facility that transitioned to producing 100% recycled paper in the 1980s. Jackson Paper is recognized for its commitment to sustainability, employing a closed-loop system that eliminates wastewater discharge and using wood waste as fuel instead of fossil fuels. The company is the largest private employer in Sylva, supporting hundreds of jobs and collaborating with over 30 wood product manufacturers in the region.

Attack Overview

The Play ransomware group claimed responsibility for the attack on Jackson Paper Manufacturing. The extent of the data leak remains undetermined. The attack highlights the vulnerabilities in the manufacturing sector, particularly for companies like Jackson Paper that rely heavily on digital systems for their operations.

About Play Ransomware Group

The Play ransomware group, also known as PlayCrypt, has been active since June 2022. Initially targeting Latin America, the group has expanded its operations to North America, South America, and Europe. Play ransomware is known for exploiting vulnerabilities in RDP servers, FortiOS, and Microsoft Exchange. The group uses custom tools and techniques to gain access, execute code, and maintain persistence on compromised systems.

Penetration Methods

Play ransomware likely penetrated Jackson Paper's systems through vulnerabilities in remote access protocols or unpatched software. The group is adept at using tools like Mimikatz for credential extraction and employs methods to disable antimalware solutions, making it challenging for companies to detect and mitigate the attack promptly.

Impact on Jackson Paper Manufacturing

The ransomware attack on Jackson Paper Manufacturing underscores the growing threat to the manufacturing sector. As a company deeply integrated into the local economy and committed to sustainability, the impact of such an attack can be far-reaching, affecting not only the company's operations but also the community it supports.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.