In July 2024, Heidmar Inc., a Greece-based global leader in marine transportation and tanker pool management, suffered a severe cyberattack by the Akira Ransomware group. The attackers claimed to have exfiltrated 20GB of sensitive organizational data, including personal files of employees, customer information, non-disclosure agreements (NDAs), confidential business agreements, and international customer contracts.The breach poses critical risks to Heidmar’s operations, reputation, and legal standing, as exposed data could enable fraud, corporate espionage, or regulatory penalties. The compromise of employee and customer records combined with the ransomware group’s demand suggests a high-stakes extortion scenario, potentially disrupting Heidmar’s global supply chain partnerships. The attack underscores vulnerabilities in maritime cybersecurity, where data integrity is vital for compliance with international shipping regulations and client trust.Given the scale of stolen data and the ransomware component, the incident threatens operational continuity, financial stability, and long-term business relationships, with possible cascading effects on the broader tanker management industry.
Source: https://x.com/FalconFeedsio/status/1810657569658061260
TPRM report: https://www.rankiteo.com/company/heidmar
"id": "hei432092125",
"linkid": "heidmar",
"type": "Ransomware",
"date": "7/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'marine transportation / tanker pool '
'management',
'location': 'Greece',
'name': 'Heidmar Inc.',
'type': 'private company'}],
'data_breach': {'data_exfiltration': '20GB of data claimed stolen',
'personally_identifiable_information': 'yes (employee and '
'customer data)',
'sensitivity_of_data': 'high',
'type_of_data_compromised': ['personal files',
'customer information',
'non-disclosure agreements '
'(NDAs)',
'confidential agreements',
'international customer '
'agreements']},
'date_publicly_disclosed': '2024-07',
'description': 'In July 2024, Heidmar Inc., a global leader in marine '
'transportation services specializing in the commercial '
'management of tanker pools based in Greece, fell victim to '
'the Akira Ransomware. The group claims to have accessed 20GB '
'of organizational data, including personal files of '
'employees, customer information, NDAs, confidential '
'agreements, and agreements with international customers.',
'impact': {'brand_reputation_impact': 'high (potential reputational damage '
'due to data exposure)',
'data_compromised': ['personal files of employees',
'customer information',
'NDAs',
'confidential agreements',
'agreements with international customers'],
'identity_theft_risk': 'high (personal files and customer '
'information exposed)'},
'initial_access_broker': {'high_value_targets': ['employee personal data',
'customer agreements',
'confidential business '
'documents']},
'investigation_status': 'ongoing (claimed by threat actor, no official '
'confirmation)',
'motivation': 'financial (ransom)',
'ransomware': {'data_exfiltration': '20GB', 'ransomware_strain': 'Akira'},
'threat_actor': 'Akira Ransomware Group',
'title': 'Heidmar Inc. Ransomware Attack by Akira Group',
'type': 'ransomware'}