EVOS Group

On 29th January 2022, EVOS a major operator of oil terminals in key European ports fell victim to a ransomware attack targeting its facilities in the Netherlands, Belgium, and Hamburg (Germany). The attack disrupted critical operations, rendering terminals unable to process barges and preventing tankers from delivering or unloading oil. Emergency protocols were activated to contain the breach, but the incident caused significant logistical bottlenecks, affecting fuel supply chains across the region. The attack’s timing and scale underscored vulnerabilities in maritime infrastructure, raising concerns about the broader economic and operational resilience of Europe’s energy sector. While no immediate data theft was confirmed, the operational paralysis posed severe financial and reputational risks, with potential cascading effects on regional trade and energy markets. The incident highlighted the growing threat of cyberattacks on critical infrastructure, particularly in sectors vital to economic stability.

Source: https://time.com/6145144/ransomware-germany-colonial-pipeline-hackers/

TPRM report: https://www.rankiteo.com/company/evosterminals

"id": "evo329092125",
"linkid": "evosterminals",
"type": "Ransomware",
"date": "1/2022",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of geographical region"

{'affected_entities': [{'industry': 'oil and gas logistics',
                        'location': ['Netherlands',
                                     'Belgium',
                                     'Germany (Hamburg)'],
                        'name': 'EVOS Group',
                        'type': 'company'}],
 'date_detected': '2022-01-29',
 'description': 'On the 29th of January, 2022, a ransomware attack was '
                'discovered on oil terminals in ports in the Netherlands, '
                'Belgium, and the port of Hamburg, Germany. These ports are '
                'all part of the EVOS group. After the discovery, emergency '
                'measures were implemented. The attack resulted in the '
                'inability of terminals to process barges, making it '
                'impossible for tankers to deliver or unload.',
 'impact': {'operational_impact': 'Terminals unable to process barges; tankers '
                                  'could not deliver or unload',
            'systems_affected': ['oil terminal operations',
                                 'barge processing systems',
                                 'tanker loading/unloading systems']},
 'ransomware': {'data_encryption': True},
 'response': {'containment_measures': ['emergency measures (unspecified)'],
              'incident_response_plan_activated': True},
 'title': 'Ransomware Attack on EVOS Group Oil Terminals in Netherlands, '
          'Belgium, and Germany',
 'type': 'ransomware'}

EVOS Group

Royal Bahrain Hospital: Payload Ransomware claims the hack of Royal Bahrain Hospital

DigitalMint and Sygnia Cybersecurity: Chicago cybersecurity firm employee brokered $75M in ransom after orchestrating hacks, feds say

England Hockey: England Hockey Investigates Possible Data Breach by AiLock Ransomware Group