Italian Energy Firm ERG Suffered Ransomware Attack

As cyberattacks continue, the latest victim turns out to be the Italian energy firm ERG group that faced a ransomware attack. The firm has supposedly fallen prey to the LockBit 2.0 gang.

ERG Group Faced Ransomware Attack

Reportedly, the Italian energy company ERG Group has become a victim of a ransomware attack. Although, the firm hasn’t precisely disclosed it yet.

ERG (Edoardo Raffinerie Garrone) Group is a publicly listed energy firm in Italy, serving as the leading wind power operator.

As the news of the cybersecurity incident caught attention, the firm released a formal statement. However, they didn’t precisely elaborate on the technicalities. Rather they have assured the continuation of usual operations (a possible attempt of downplaying the incident).

According to their official statement on the website,

Concerning the recent rumours in the media on hacker attacks on institutions and companies, ERG reports that it has experienced only a few minor disruptions to its ICT infrastructure, which are currently being overcome, also thanks to the prompt deployment of its internal cybersecurity procedures.
The company confirms that all its plants are operating smoothly and have not experienced any downtime, thus ensuring continuous business operations.

LockBit 2.0 Ransomware Behind The Incident

The news about ERG’s cyber attack surfaced online after the attackers disclosed it on their leak site.

The LockBit 2.0 ransomware gang mentioned ERG on its victim list whilst highlighting data theft. Specifically, the attackers claimed to have stolen data from ERG’s network, threatening to leak it in 8 days.

If that happens, it would confirm two things; first, that ERG did suffer the attack, second, that they didn’t pay the ransom.

For now, it isn’t clear how much ransom the attackers have demanded from the firm and how they managed to infiltrate ERG’s network.

LockBit 2.0 is the ransomware-as-a-service from the LockBit ransomware gang that first caught attention in late 2020.

Related posts

Water Facilities Must Secure Exposed HMIs – Warns CISA

Microsoft December Patch Tuesday Arrived With 70+ Bug Fixes

NachoVPN Attack Risks Corporate VPN Clients