Ransomware frenzy hits European oil and transport companies

Written by Tim Starks

European oil and transportation services have spent all week under attack from ransomware.

The latest victim, the aeronautical services company Swissport, announced on Friday that ransomware had hit part of its IT infrastructure, causing flight delays and taking its website offline. The company said last month that in 2019 it powered 2.3 million flights and claimed 2,000 employees at 40 airports in six countries.

The announcement comes a day after reports of attacks on oil port terminals in Belgium and the Netherlands. Earlier this week, two German oil companies also fell victim to ransomware, forcing one of them to operate at limited capacity and prompting Shell to reroute oil supplies.

Although both attacks have sparked speculation about Russian government involvement at a time when Germany is considering pulling out of a gas pipeline deal with Russia over its aggression against Ukraine, European officials have said that ‘they didn’t currently think the attacks in Belgium, Germany or the Netherlands were related.

Germany’s Federal Office for Information Security blamed BlackCat for the attacks in its country, and a European official told The Record that the port attacks were associated with the BlackCat and Conti ransomware families, whose researchers have retraced Russia.

BlackCat ransomware quickly made a name for itself. Analysts have observed links between BlackCat and other major ransomware groups like REvil and Darkside. A representative of the BlackCat gang told Recorded Future that it was actually linked to several ransomware groups because they were affiliated – although ransomware agents, like many cybercriminals, are prone to deception and manipulation. exaggeration.

-In this story-

Belgium, BlackCat, Conti, DarkSide, energy, Europe, Germany, Netherlands, oil, ransomware, REvil, transport

Comments are closed.