Heimdal
Home > Cybersecurity News

Breach Alert! Rheinmetall AG Confirms Being Hit by BlackBasta Ransomware Attack

The Data Breach Did Not Impact the Company`s Military Business.

Last updated on May 24, 2023

article featured image

Contents:

Rheinmetall AG announced they suffered a data breach after being a target of a BlackBasta ransomware attack. On May 20th, 2023, the threat group leaked samples of the stolen data on its extortion site.

According to the German automotive and arms manufacturer, the attack is real. The security team discovered the network breach on April 14th, of this year. It only affected its civilian business.

Rheinmetall is continuing to work on resolving an IT attack by the ransomware group Black Basta. This was detected on 14 April 2023. It affects the Group’s civilian business.

Due to the strictly separated IT infrastructure within the Group, Rheinmetall’s military business is not affected by the attack.

Source

The Data Breach Impact and Consequences

As Rheinmetall announced, the samples that threat actors published on their site were not related to their military activities. However, the leaked data is still important, as it includes:

– non-disclosure agreements,

– technical schematics,

– passport scans,

– purchase orders.

The company already informed the law enforcement authorities and the investigation is still ongoing.

Why Is Rheinmetall a Favorite Target for Cyberattacks

Rheinmetall has more than 25,000 employees and produces military vehicles, armaments, air defense systems, engines, and other steel products. The German company is one of the key aid providers for Ukraine.

At the moment, Rheinmetall is one of Europe’s most important weapons suppliers. That and its annual revenue that exceeds $7 billion make it an attractive target for all sorts of hackers.

Source

Rheinmetall was also targeted this year by Killnet who tried to cause a distributed denial-of-service (DDoS). At the moment, although a higher volume of traffic was reported on Rheinmetall’s network, the infrastructure did not suffer.

If you liked this article, follow us on LinkedIn, Twitter, Facebook, and YouTube for more cybersecurity news and topics.

Author Profile

Livia Gyongyoși

Communications and PR Officer

Livia Gyongyoși is a Communications and PR Officer within Heimdal®, passionate about cybersecurity. Always interested in being up to date with the latest news regarding this domain, Livia's goal is to keep others informed about best practices and solutions that help avoid cyberattacks.

Related Articles

Locking Out Cybercriminals: Here’s How to Prevent Ransomware AttacksRheinmetall Suffers Another Cyberattack – Company Operations Still FunctionalList of Proxy IPs Used by Killnet, ReleasedHow to Mitigate Ransomware?What Is Data Leakage?Network Security 101 – Definition, Types, Threats, and MoreWhat Is a Data Breach and How to Prevent It

Leave a Reply

Your email address will not be published. Required fields are marked *

CHECK OUR SUITE OF 11 CYBERSECURITY SOLUTIONS

SEE MORE
linkedin
youtube
facebook
x

resources

company

newsletter

© 2024 Heimdal®

Vat No. 35802495, Vester Farimagsgade 1, 2 Sal, 1606 København V