Security News > 2024 > February > Critical infrastructure software maker confirms ransomware attack

PSI Software SE, a German software developer for complex production and logistics processes, has confirmed that the cyber incident it disclosed last week is a ransomware attack that impacted its internal infrastructure.
The company operates at a global level with a staff of more than 2,000 and specializes in software solutions for major energy suppliers.
On February 15, PSI Software announced that a cyberattack forced it to disconnect several IT systems, including email, as a measure to mitigate the risk of data loss.
"We detected unusual activity in our network during the night of February 15, 2024. As a result, all external connections and systems were successively shut down still in the night" - PSI Software.
Though PSI Software has not shared specific details about the threat group responsible for the attack, the Hunters International ransomware gang has claimed the breach.
The threat actors posted PSI Software on their extortion portal on the dark web on February 17, two days after the attack.
News URL
Related news
- CISA: Medusa ransomware hit over 300 critical infrastructure orgs (source)
- US indicts 8Base ransomware operators for Phobos encryption attacks (source)
- RA World Ransomware Attack in South Asia Links to Chinese Espionage Toolset (source)
- Chinese espionage tools deployed in RA World ransomware attack (source)
- Critical PostgreSQL bug tied to zero-day attack on US Treasury (source)
- Lee Enterprises newspaper disruptions caused by ransomware attack (source)
- Southern Water says Black Basta ransomware attack cost £4.5M in expenses (source)
- Qilin ransomware claims attack at Lee Enterprises, leaks stolen data (source)
- Ransomware gangs exploit Paragon Partition Manager bug in BYOVD attacks (source)
- Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks (source)