Ransomware Hits Sumitomo Rubber South Africa by KillSec

Incident Date: Nov 02, 2024

Attack Overview

VICTIM

Sumitomo

INDUSTRY

Manufacturing

LOCATION

South Africa

ATTACKER

Killsec

FIRST REPORTED

November 2, 2024

Request Removal

Ransomware Attack on Sumitomo Rubber South Africa by KillSec

Sumitomo Rubber South Africa (Pty) Ltd, a prominent player in the tyre manufacturing industry, has recently fallen victim to a ransomware attack claimed by the notorious group KillSec. This incident highlights the vulnerabilities faced by companies in the manufacturing sector, particularly those with significant market presence and extensive operations.

Company Overview

Sumitomo Rubber South Africa, commonly known as SRI Group, operates as a subsidiary of Sumitomo Rubber Industries, headquartered in Kobe, Japan. The company is a key contributor to the South African automotive sector, with its state-of-the-art manufacturing facility located in Ladysmith, KwaZulu-Natal. This facility is crucial for producing a range of tyres under brands such as Dunlop, Sumitomo, and Falken. The company employs approximately 1,200 personnel and has a significant market presence, with one in five vehicles on South African roads fitted with locally produced Dunlop tyres.

Attack Overview

The ransomware attack orchestrated by KillSec has resulted in the unauthorized access and potential exfiltration of sensitive data, including personally identifiable information and critical financial data. This breach underscores the persistent threat posed by ransomware groups targeting industrial and manufacturing sectors. The attack on Sumitomo Rubber South Africa is particularly concerning given the company's recent R1.7 billion investment aimed at enhancing its manufacturing capabilities and modernizing its operations.

About KillSec

KillSec, also known as Kill Security, is a ransomware group known for targeting various industries, including manufacturing, government, and finance. The group is distinguished by its use of multiple communication channels and crypto wallets, often demanding significant extortion amounts. KillSec has been active in several countries, including the United States, United Kingdom, and India, and is known for its sophisticated tactics in penetrating company systems.

Potential Vulnerabilities

Sumitomo Rubber South Africa's extensive operations and significant market presence make it an attractive target for ransomware groups like KillSec. The company's reliance on digital infrastructure for manufacturing and distribution may have exposed vulnerabilities that were exploited during the attack. The incident serves as a stark reminder of the importance of cybersecurity measures, particularly for companies in the manufacturing sector.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.