Ransomware cyber

Metapack Overseas Express Shipping Company

Jan 12, 2026 1 min read
Metapack Overseas Express Shipping Company

In September 2020, the Metapack Overseas Express Shipping Company fell victim to a ransomware attack orchestrated by the LockBit hacking group. The breach originated from a phishing email, leading to the encryption of the company’s network. The attackers exploited dark web forums and their own blogs to coerce the company into paying the ransom by publicizing the attack and threatening further exposure. The incident resulted in the leakage of the company’s database, compromising 5.8 million records, including personally identifiable information (PII) and internal documents. The attack not only disrupted operations but also posed severe reputational and financial risks, as sensitive customer and corporate data was exposed to malicious actors. The attackers’ tactics public shaming and intimidation were designed to pressure the company into compliance while serving as a warning to other potential targets about the consequences of non-payment.

Source: https://geeksadvice.com/remove-lockbit-ransomware-virus/

TPRM report: https://www.rankiteo.com/company/metapack

"id": "met404092125",
"linkid": "metapack",
"type": "Ransomware",
"date": "9/2020",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'logistics/shipping',
                        'name': 'Metapack Overseas Express Shipping Company',
                        'type': 'private company'}],
 'attack_vector': ['phishing'],
 'data_breach': {'data_encryption': True,
                 'data_exfiltration': True,
                 'number_of_records_exposed': '5,800,000',
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'high',
                 'type_of_data_compromised': ['PII', 'internal documents']},
 'date_detected': '2020-09',
 'description': 'In September 2020, Metapack Overseas Express Shipping Company '
                'experienced a ransomware attack by the LockBit hacking group. '
                'The attack began via a phishing email, leading to network '
                'infection and data encryption. The attackers used dark web '
                'forums and their own blogs to intimidate victims into paying '
                'the ransom. The incident resulted in the leakage of a company '
                'database containing 5.8 million records, including PII and '
                'internal documents.',
 'impact': {'brand_reputation_impact': 'high (due to public intimidation and '
                                       'data leakage)',
            'data_compromised': ['PII', 'internal documents'],
            'identity_theft_risk': 'high (5.8 million PII records exposed)',
            'systems_affected': ['network']},
 'initial_access_broker': {'entry_point': 'phishing email',
                           'high_value_targets': ['company database']},
 'motivation': ['financial gain', 'intimidation'],
 'post_incident_analysis': {'root_causes': ['successful phishing attack',
                                            'inadequate email security']},
 'ransomware': {'data_encryption': True,
                'data_exfiltration': True,
                'ransomware_strain': 'LockBit'},
 'threat_actor': 'LockBit',
 'title': 'Metapack Overseas Express Shipping Company Ransomware Attack '
          '(LockBit)',
 'type': 'ransomware'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.