Security News > 2022 > January > Defense contractor Hensoldt confirms Lorenz ransomware attack
Hensoldt, a multinational defense contractor headquartered in Germany, has confirmed that some of its UK subsidiary's systems were compromised in a ransomware attack.
While the company is yet to issue a public statement regarding this incident, the Lorenz ransomware gang has already claimed the attack.
For its part, the Lorenz ransomware group claims to have stolen an undisclosed amount of files from Hensholdt's network during the attack.
While Lorenz shows the leak as being "Paid," it's unclear if that means Hensoldt paid a ransom or if another threat actor purchased the data.
This is because the Lorenz ransomware gang is known for selling stolen data to other threat actors to pressure victims into paying ransoms.
In June, Dutch cybersecurity firm Tesorion released a free Lorenz ransomware decryptor, which victims can use to recover some file types, including Office documents, PDF files, images, and videos.
- Medusa ransomware claims attack on Open University of Cyprus (source)
- MSI confirms security breach following ransomware attack claims (source)
- Iran-Based Hackers Caught Carrying Out Destructive Attacks Under Ransomware Guise (source)
- Taiwanese PC Company MSI Falls Victim to Ransomware Attack (source)
- KFC, Pizza Hut owner discloses data breach after ransomware attack (source)
- Windows zero-day vulnerability exploited in ransomware attacks (source)
- Vice Society ransomware uses new PowerShell data theft tool in attacks (source)
- Hackers start abusing Action1 RMM in ransomware attacks (source)
- NCR suffers Aloha POS outage after BlackCat ransomware attack (source)
- March 2023 broke ransomware attack records with 459 incidents (source)