Helicopter maker Kopter has fallen sufferer to a ransomware assault after hackers breached its inner community and encrypted the corporate’s information.
After Kopter refused to interact with the hackers, the ransomware gang has revealed on Friday a number of the firm’s information on the web.
Many ransomware teams add and share sufferer information on particular “leak sites” as a part of their techniques to place strain on the hacked corporations to both have them come to the negotiation desk or drive them into paying big ransom calls for.
LockBit ransomware gang takes credit score
The Kopter information has been revealed on a weblog hosted on the darkish internet and operated by the LockBit ransomware gang. Recordsdata shared on this web site embrace enterprise paperwork, inner tasks, and varied aerospace and protection business requirements.
In an e-mail, the operators of the LockBit ransomware advised ZDNet that they breached Kopter’s community final week by exploiting a VPN equipment that used a weak password and didn’t have two-factor authentication (2FA) enabled.
The LockBit gang additionally mentioned they function an online portal on the darkish internet the place they present particulars to hacked corporations concerning the assault, together with a ransom demand. LockBit operators mentioned somebody from Kopter accessed the ransom web page, however the firm didn’t interact with them in a chat window supplied to hacked corporations.
Kopter has not publicly disclosed a safety breach on its web site or through enterprise wires.
A Kopter spokesperson didn’t return an e-mail looking for touch upon the ransomware assault. Phone calls made on Friday additionally remained unanswered.
The Switzerland-based firm was based in 2007 and is understood for its line of small and medium-class civilian helicopters.
In January 2020, Italian aerospace and protection firm Leonardo acquired Kopter for an undisclosed sum.