Summary: A ransomware attack by the DragonForce group has targeted Saudi construction firm Al Bawani, stealing approximately 6TB of sensitive data and highlighting increased cyber threats in the region. The attack underscores a concerning trend in which construction and real estate sectors are increasingly being targeted by cybercriminals, fueled by the proliferation of ransomware-as-a-service (RaaS) models. Experts suggest that geopolitical factors could be influencing these cyber threats, but the identity and motivations of the attackers remain unclear.
Affected: Al Bawani (construction firm in Saudi Arabia)
Keypoints :
- A ransomware attack resulted in the theft of 6TB of data from Al Bawani.
- DragonForce issued a warning on their data-leak site, demanding payment within two weeks before leaking sensitive data.
- Ransomware attacks in the Middle East have surged, particularly targeting construction and real estate sectors due to their sensitive data and potential payouts.
- There are indications that DragonForce may have affiliations with cybercriminals in China or Iran, although definitive attribution is challenging.
- The construction sector has become a focal point for cybercriminals, with a significant uptick in attacks in 2023.
Source: https://www.darkreading.com/cyberattacks-data-breaches/ransomware-attacks-saudi-construction-firms