Ransomware cyber

Neda Maritime

Dec 5, 2024 1 min read
Neda Maritime

In December 2024, Neda Maritime, a leading Greek ship management company, fell victim to a targeted cyberattack by the Blackout ransomware group. The attackers successfully exfiltrated approximately 150GB of sensitive data, including critical shipping logs and crew information, before encrypting the company’s systems and destroying backups to prevent recovery. The ransomware group then issued an ultimatum, threatening to publicly release the stolen data unless a ransom was paid by December 23, 2024. The breach not only compromised operational and personnel data but also posed severe risks to the company’s continuity, as the destruction of backups left Neda Maritime with limited options for restoring encrypted systems. The attack underscored the growing threat of double-extortion ransomware in the maritime sector, where sensitive logistical and employee data are prime targets for cybercriminals seeking financial gain through coercion.

Source: https://x.com/FalconFeedsio/status/1866207285854515298

TPRM report: https://www.rankiteo.com/company/nedamaritime

"id": "ned431092125",
"linkid": "nedamaritime",
"type": "Ransomware",
"date": "12/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"
{'affected_entities': [{'industry': 'ship management',
                        'location': 'Greece',
                        'name': 'Neda Maritime',
                        'type': 'company'}],
 'data_breach': {'data_encryption': True,
                 'data_exfiltration': '150GB',
                 'sensitivity_of_data': 'high',
                 'type_of_data_compromised': ['shipping logs',
                                              'crew information']},
 'description': 'In December 2024, Neda Maritime, a prominent Greek ship '
                'management company, was targeted by the Blackout ransomware '
                'group. The attackers exfiltrated around 150GB of sensitive '
                'data, including shipping logs and crew information, and '
                "encrypted the company's data while destroying backups. They "
                'threatened to release the stolen information unless a ransom '
                'was paid by December 23.',
 'impact': {'data_compromised': ['shipping logs', 'crew information']},
 'motivation': 'financial (ransom)',
 'ransomware': {'data_encryption': True,
                'data_exfiltration': True,
                'ransomware_strain': 'Blackout'},
 'threat_actor': 'Blackout ransomware group',
 'title': 'Neda Maritime Ransomware Attack by Blackout Group',
 'type': 'ransomware'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.