LockBit ransomware group has expanded its victim list by adding nine websites, targeting organizations in the UK, UAE, Sweden, Germany, South Africa, and Austria. However, the cyber attack on Zaun Limited, among others, remains unconfirmed by the affected global organizations.
The websites of all named companies were accessible at the time of writing. The Cyber Express has emailed all the organizations named in the ransomware attack. We will update this report based on their response.
Details of the Zaun cyber attack and others listed by LockBit
Among the victims were Zaun Limited, which boasts to be the only British in-house manufacturer of welded and woven mesh fencing. Roxcel Trading is a manufacturer of pulp, paper, and board and is based in Austria.
St. Marys School, Waverley named as a victim by LockBit is a private Anglican boarding school for girls in Johannesburg, South Africa.
Meaf Machines was another organization named in the LockBit ransomware group’s leak dark web portal. The Netherlands-based company manufactures sheet extrusion equipment.
Max Rappenglitz is a Germany-based construction company named in the series of ransomware attacks on August 13, 2023. LockBit named Siam Premier based in Thailand is an international law office and provides legal assistance to clients.
Luterkort Advokatbyra is also a law firm based in Sweden and was named a target of the latest cyber attacks by LockBit. Majan is a UAE-based printing and packaging company that was also allegedly targeted by a ransomware attack.
The ninth name listed by LockBit was DIFC Courts, which is based in Dubai, UAE. The Dubai International Financial Centre is an independent common law judiciary.
The Zaun cyber attack post along with others was left with a deadline. Zaun was threatened with a deadline of 16 days following which all its data will be published online.
The following deadlines were given to the other targeted companies –
- Roxcel – 9 days
- Marys School – 12 days
- MEAF Machines – 11 days
- Max Rappenglitz – 7 days
- Siam Premier – 8 days
- Luterkort Advokatbyra – 16 days
- Majan – 8 days
The differing deadlines might mean that the hackers gained access and left their ransom demands to the targeted companies on different dates. Or, it might be for the convenience of the hackers to release the exfiltrated data from the Zaun cyber attack and others.
The deadlines listed next to each targeted entity on the leak site, including the Zaun cyber attack, hint at ongoing negotiations and lingering ransom threats.
The appearance of victims’ names on LockBit’s website may also suggest that ransom negotiations ended unsuccessfully, resulting in public exposure and a final threat.
The information about the Zaun cyber attack and the other eight ransomware attacks by LockBit was tweeted by the cybersecurity researchers, Falcon Feeds.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.