Security News > 2022 > January > Defense contractor Hensoldt confirms Lorenz ransomware attack

Hensoldt, a multinational defense contractor headquartered in Germany, has confirmed that some of its UK subsidiary's systems were compromised in a ransomware attack.
While the company is yet to issue a public statement regarding this incident, the Lorenz ransomware gang has already claimed the attack.
For its part, the Lorenz ransomware group claims to have stolen an undisclosed amount of files from Hensholdt's network during the attack.
While Lorenz shows the leak as being "Paid," it's unclear if that means Hensoldt paid a ransom or if another threat actor purchased the data.
This is because the Lorenz ransomware gang is known for selling stolen data to other threat actors to pressure victims into paying ransoms.
In June, Dutch cybersecurity firm Tesorion released a free Lorenz ransomware decryptor, which victims can use to recover some file types, including Office documents, PDF files, images, and videos.
News URL
Related news
- US indicts 8Base ransomware operators for Phobos encryption attacks (source)
- RA World Ransomware Attack in South Asia Links to Chinese Espionage Toolset (source)
- Chinese espionage tools deployed in RA World ransomware attack (source)
- Lee Enterprises newspaper disruptions caused by ransomware attack (source)
- Becoming Ransomware Ready: Why Continuous Validation Is Your Best Defense (source)
- Data Theft Drove 94% of Global Cyberattacks in 2024 & Ransomware Defenses are “Increasingly Complex” (source)
- Southern Water says Black Basta ransomware attack cost £4.5M in expenses (source)
- Qilin ransomware claims attack at Lee Enterprises, leaks stolen data (source)
- Ransomware gangs exploit Paragon Partition Manager bug in BYOVD attacks (source)
- Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks (source)