Ransomware Attack on Diatech Lab Line by DonutLeaks

Overview of Diatech Lab Line

Diatech Lab Line, established in 2011 and based in Jesi, Ancona, Italy, is a prominent distributor of products and reagents for molecular and cellular biology laboratories. As part of the Diatech group, which includes Diatech Pharmacogenetics and BiMind, the company provides comprehensive solutions for molecular biology research. They specialize in advanced tools and reagents for applications such as single-cell RNA and DNA sequencing and gene expression analysis. Collaborating with leading brands like Takara and NanoString, Diatech Lab Line ensures cutting-edge technology for their customers. Their commitment to quality is underscored by certifications such as EN ISO 9001:2015 and EN ISO 13485:2016.

Details of the Ransomware Attack

Diatech Lab Line has recently fallen victim to a ransomware attack orchestrated by the DonutLeaks group. The cybercriminals have reportedly exfiltrated a substantial 1.2 TB of data from the company. This breach has led to Diatech Lab Line being publicly listed as a victim by the DonutLeaks ransomware group, highlighting the severity and scale of the attack. The attack has significant implications for the company, given its critical role in the healthcare services sector and its extensive collaborations with research institutions and laboratories.

About DonutLeaks Ransomware Group

The DonutLeaks ransomware group is a data extortion group first detected in August 2022. They have been linked to several high-profile cyberattacks, including those on DESFA, Sheppard Robson, and Sando. The group uses customized ransomware for double-extortion attacks, encrypting files and leaking stolen data to extort victims. Their ransomware renames encrypted files with the ".d0nut" extension and avoids files and folders containing specific strings. DonutLeaks maintains a data storage site where stolen data is stored and can be browsed and downloaded by visitors. The group is known for its theatrics, using interesting graphics, humor, and ASCII art in their ransom notes and data leak site.

Potential Vulnerabilities

Diatech Lab Line's extensive digital infrastructure and the sensitive nature of the data they handle make them a prime target for ransomware groups like DonutLeaks. The company's focus on providing high-quality products and services to the scientific community means that any disruption can have far-reaching consequences. The attack underscores the importance of robust cybersecurity measures, especially for companies operating in critical sectors like healthcare and molecular biology research.

Sources

• Diatech Lab Line
• Diatech Pharmacogenetics - About Us
• Bleeping Computer - Donut Extortion Group
• Cyware - Donut Leaks Ransomware Tool
• HelpRansomware - Donut Leaks Ransomware