Ransomware Attack on Erne AG by INC Ransom Group: Details and Impact

Incident Date: Jul 13, 2024

Attack Overview

VICTIM

Erne AG

INDUSTRY

Construction

LOCATION

Switzerland

ATTACKER

Inc Ransom

FIRST REPORTED

July 13, 2024

Request Removal

Ransomware Attack on Erne AG by INC Ransom Group

Overview of Erne AG

Erne AG, operating under the domain erne.net, is a prominent company in the construction sector, specializing in modern wood construction and innovative building solutions. Headquartered in Laufenburg, AARGAU, Switzerland, Erne AG is known for its advanced technology and sustainable practices in the construction industry. The company has been recognized for its expertise in creating hybrid wood-concrete buildings and office spaces, showcasing its commitment to innovation and sustainability.

Details of the Ransomware Attack

On July 16, 2024, Erne AG fell victim to a ransomware attack orchestrated by the cybercriminal group INC Ransom. The attack involved the encryption and theft of sensitive data, with the threat of public disclosure if ransom demands were not met. The specifics of the data breach, including the size of the leak, remain under investigation. This incident highlights the vulnerabilities that even technologically advanced companies like Erne AG face in the evolving landscape of cyber threats.

About INC Ransom Group

INC Ransom is a sophisticated ransomware group known for its targeted attacks on corporate and organizational networks. The group employs advanced techniques such as spear-phishing campaigns and exploiting vulnerabilities like CVE-2023-3519 in Citrix NetScaler. Their modus operandi includes double extortion, where they not only encrypt data but also steal it, threatening to release it publicly to increase pressure on victims. INC Ransom has targeted various industries, including healthcare, education, government entities, and technology companies, making them a formidable threat in the cybersecurity landscape.

Penetration and Impact

The exact method of penetration in the Erne AG attack is not yet disclosed, but it is likely that INC Ransom used a combination of spear-phishing and exploiting known vulnerabilities. Companies in the construction sector, despite their technological advancements, can be vulnerable due to the extensive use of interconnected systems and third-party collaborations. This attack underscores the importance of robust cybersecurity measures and continuous monitoring to defend against sophisticated threat actors like INC Ransom.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.