Sarcoma Group Strikes J.D. International Lighting in Ransomware Attack

Incident Date: Jan 16, 2025

Attack Overview

VICTIM

JD Lighting

INDUSTRY

Business Services

LOCATION

USA

ATTACKER

Sarcoma

FIRST REPORTED

January 16, 2025

Request Removal

Ransomware Attack on J.D. International Lighting by Sarcoma Group

J.D. International Lighting, a well-established American wholesale lighting distributor, has allegedly been targeted by a ransomware attack orchestrated by the Sarcoma group. The breach, discovered on January 16, 2025, involved the exfiltration of 76 GB of sensitive data, though the specific nature of the compromised information remains undisclosed. This incident underscores the persistent threat posed by ransomware groups to businesses across various sectors.

Company Profile and Industry Standing

Founded in 1986, J.D. International Lighting operates from its headquarters in Pompano Beach, Florida. The company, with an annual revenue between $5-10 million, employs 11-50 people and specializes in the distribution of a wide range of lighting products, including fluorescent, incandescent, HID, halogen, CFL, and LED bulbs. With five distribution centers across the United States, J.D. International Lighting is a key player in the wholesale lighting industry, known for its extensive product range and nationwide reach.

Vulnerabilities and Attack Overview

The attack on J.D. International Lighting highlights the vulnerabilities that mid-sized companies face in the digital age. Despite its industry standing, the company's relatively small size and limited resources may have contributed to its susceptibility to cyber threats. The Sarcoma group, known for its aggressive tactics, likely exploited these vulnerabilities to infiltrate the company's systems and exfiltrate data.

Sarcoma Ransomware Group Tactics

Sarcoma, a ransomware group that emerged in late 2024, has quickly established itself as a formidable threat in the cybercrime landscape. The group employs a double extortion model, encrypting victims' data and threatening to leak it if ransom demands are not met. Sarcoma distinguishes itself by targeting supply chains and leveraging strong encryption methods, making data recovery challenging without payment. The group's operations have impacted various sectors globally, including healthcare, manufacturing, and finance.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.