In 2023, AG&P, a Philippines-based energy infrastructure company, fell victim to a ransomware attack executed by the LockBit 3.0 group a Russia-affiliated cybercriminal syndicate notorious for targeting critical industries. The attack disrupted AG&P’s operations, underscoring the group’s focus on high-impact sectors where digital infrastructure vulnerabilities can trigger widespread economic repercussions.The incident exposed gaps in cybersecurity defenses within the energy sector, particularly in regions undergoing rapid digital expansion. While the exact scope of data compromise or operational downtime was not publicly detailed, the attack’s strategic targeting of energy infrastructure a sector vital to regional stability suggested potential cascading effects on supply chains, economic activity, and public services. The LockBit group’s modus operandi often involves data encryption, exfiltration, and ransom demands, compounding financial and reputational damage. Given AG&P’s role in energy logistics, the attack likely posed risks beyond immediate operational halts, including long-term trust erosion among partners and regulators and heightened scrutiny of cybersecurity protocols in critical infrastructure.
TPRM report: https://www.rankiteo.com/company/ag-p-lng
"id": "ag-813092125",
"linkid": "ag-p-lng",
"type": "Ransomware",
"date": "6/2023",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of geographical region"{'affected_entities': [{'industry': 'energy infrastructure',
'location': 'Philippines',
'name': 'AG&P',
'type': 'company'}],
'data_breach': {'data_encryption': True},
'description': 'In 2023, AG&P, a key player in energy infrastructure based in '
'the Philippines, faced a ransomware attack launched by the '
'notorious LockBit 3.0 group. This Russia-linked organization '
'is known for its relentless targeting of critical industries. '
"The incident disrupted AG&P's operations, illustrating the "
"group's strategy of focusing on infrastructure companies "
'whose activities have far-reaching economic consequences. The '
'attack highlighted the pressing need for bolstering '
'cybersecurity defenses in the energy sector, especially in '
'regions where digital infrastructure is expanding rapidly.',
'impact': {'downtime': True, 'operational_impact': 'disruption of operations'},
'lessons_learned': 'The attack highlighted the pressing need for bolstering '
'cybersecurity defenses in the energy sector, especially '
'in regions where digital infrastructure is expanding '
'rapidly.',
'motivation': 'financial (ransomware)',
'ransomware': {'data_encryption': True, 'ransomware_strain': 'LockBit 3.0'},
'threat_actor': 'LockBit 3.0',
'title': 'Ransomware Attack on AG&P by LockBit 3.0',
'type': 'ransomware'}