Security News > 2021 > September > US farmer cooperative hit by $5.9M BlackMatter ransomware attack

U.S. farmers cooperative NEW Cooperative has suffered a BlackMatter ransomware attack demanding $5.9 million not to leak stolen data and provide a decryptor.
NEW Cooperative is a farmer's feed and grain cooperative with over sixty locations throughout Iowa.
NEW Cooperative has confirmed the attack to BleepingComputer and stated that they had taken their systems offline to contain the attack's spread. "NEW Cooperative recently identified a cybersecurity incident that is impacting some of our company's devices and systems. Out of an abundance of caution, we have proactively taken our systems offline to contain the threat, and we can confirm it has been successfully contained," a NEW Cooperative spokesperson told BleepingComputer.
BlackMatter is believed to be a rebrand of the DarkSide ransomware that disappeared after attacking the Colonial Pipeline.
From screenshots of the negotiation page shared on Twitter, NEW Cooperative asked BlackMatter why they were attacked as they are considered critical infrastructure and the attack will lead to food supply disruption for grain, pork, and chicken.
"The impact of this attack will likely be much worse than the pipeline attack for context, and we have no way to control that given the disruption this has already caused."
News URL
Related news
- Southern Water says Black Basta ransomware attack cost £4.5M in expenses (source)
- Qilin ransomware claims attack at Lee Enterprises, leaks stolen data (source)
- Ransomware gangs exploit Paragon Partition Manager bug in BYOVD attacks (source)
- Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks (source)
- Hunters International ransomware claims attack on Tata Technologies (source)
- Toronto Zoo shares update on last year's ransomware attack (source)
- Feds name and charge alleged Silk Typhoon spies behind years of China-on-US attacks (source)
- US seizes domain of Garantex crypto exchange used by ransomware gangs (source)
- Ransomware gang creates tool to automate VPN brute-force attacks (source)
- SANS Institute Warns of Novel Cloud-Native Ransomware Attacks (source)