Austal USA

In December 2023, Austal USA, the US subsidiary of Australian shipbuilder Austal a key contractor for the US Navy fell victim to a ransomware attack orchestrated by the Hunters International Ransomware-as-a-Service (RaaS) group. The attack resulted in the exfiltration of 43 files totaling 87.2MB of data, though Austal confirmed that no sensitive US Navy-related information was compromised. The incident highlights the growing threat posed by RaaS operators targeting defense-industrial base (DIB) suppliers, where even limited data theft can disrupt operations, erode trust with government clients, and trigger regulatory scrutiny. While the stolen data volume was relatively small, the attack underscores vulnerabilities in supply chains critical to national security. Austal’s response likely involved containment measures, forensic investigations, and coordination with cybersecurity agencies, though the long-term reputational and financial repercussions such as potential contract delays or increased insurance premiums remain uncertain. The attack also serves as a warning for defense contractors to bolster cybersecurity posture against evolving ransomware tactics, particularly those leveraging affiliate-based models like Hunters International.

Source: https://www.cpomagazine.com/cyber-security/defense-contractor-austal-usa-confirms-a-cyber-attack-by-hunters-international-ransomware-group/

TPRM report: https://www.rankiteo.com/company/austalusa

"id": "aus525092125",
"linkid": "austalusa",
"type": "Ransomware",
"date": "12/2023",
"severity": "75",
"impact": "2",
"explanation": "Attack limited on finance or reputation"

{'affected_entities': [{'industry': ['defense', 'shipbuilding'],
                        'location': 'USA',
                        'name': 'Austal USA',
                        'type': 'subsidiary'}],
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': '43 files',
                 'sensitivity_of_data': "low (per Austal's statement)",
                 'type_of_data_compromised': 'non-sensitive corporate data (no '
                                             'US Navy-sensitive data)'},
 'date_publicly_disclosed': '2023-12',
 'description': 'In December 2023, a Ransomware as a Service (RaaS) provider '
                'called Hunters International launched a ransomware attack on '
                'Austal USA, the US subsidiary of an Australian shipbuilder '
                'with contracts to build vessels for the US Navy. The attack '
                'resulted in the exfiltration of 43 files totaling 87.2MB of '
                'data. Austal confirmed that no sensitive data regarding the '
                'US Navy was leaked.',
 'impact': {'data_compromised': '87.2MB (43 files)'},
 'investigation_status': 'ongoing (as of disclosure)',
 'motivation': 'financial gain',
 'ransomware': {'data_exfiltration': True},
 'threat_actor': 'Hunters International (RaaS provider)',
 'title': 'Ransomware Attack on Austal USA by Hunters International',
 'type': ['ransomware', 'data breach']}

Austal USA

Royal Bahrain Hospital: Payload Ransomware claims the hack of Royal Bahrain Hospital

DigitalMint and Sygnia Cybersecurity: Chicago cybersecurity firm employee brokered $75M in ransom after orchestrating hacks, feds say

England Hockey: England Hockey Investigates Possible Data Breach by AiLock Ransomware Group