LockBit responsible for German Energy Agency attack

B2B Cyber ​​Security ShortNews

Share post

Now it's official: LockBit carried out the attack on the German Energy Agency - dena for short. On the APT group's leak page there is still a countdown until December 26, 2023. After that, all stolen data should be online. dena is now announcing accessibility again.

The German Energy Agency – dena – reported a cyber attack on the weekend of November 11th to 12th. The servers were paralyzed and accessibility was only possible to a limited extent, according to the homepage. According to its own information, dena can now be reached again. However, further IT protection measures are still in progress. There is now an entry about the attack and a countdown on LockBit's leak page. This suggests that dena is being blackmailed.

LockBit starts countdown for dena

🔎 The APT group LockBit wants to publish the data captured from dena on December 26th (Image: B2B-C-S).

dena announces on its homepage: “As things currently stand, as a result of the cyber attack on dena, unfortunately a risk to the data processed by our business contacts cannot be ruled out. This may also affect sensitive data, such as account details.” The assumption could be correct, as LockBit threatens on its leak page that it wants to publish the stolen data on December 26th

However, dena also announced that IT forensic experts are still investigating exactly which data was leaked. In addition, the entire IT infrastructure will be subjected to a complete review in order to ensure the greatest possible data security for the future. Only then does the German Energy Agency want to start up and use all systems again.

Does dena have valuable data?

According to dena, the type of data captured is sensitive, but not extremely sensitive. Since dena is a project company and a public company owned by the federal government, it will certainly not respond to the blackmail. The institute has more of an advisory role and prepares studies for many areas of the energy transition and climate protection. Why the agency should be a worthwhile target is unclear. It should also be clear to the attackers that a government institution will not pay a ransom if a ransomware attack has occurred. So you have to assume that it was a targeted disruption from which the attacker is hoping to gain something.

Dena describes itself in short form: “The German Energy Agency – dena for short is a competence center for applied energy transition and climate protection. dena looks at the challenges of a climate-neutral society and supports the federal government in achieving its energy and climate policy goals. Since its founding in 2000, the agency has been developing solutions, putting them into practice and bringing together partners from politics, business, science and all parts of society - nationally and internationally. dena is a project company and a public company owned by the federal government. The shareholder is the Federal Republic of Germany.”

More at dena.de


Matching articles on the topic

Report: 40 percent more phishing worldwide

The current spam and phishing report from Kaspersky for 2023 speaks for itself: users in Germany are after ➡ Read more

BSI sets minimum standards for web browsers

The BSI has revised the minimum standard for web browsers for administration and published version 3.0. You can remember that ➡ Read more

Stealth malware targets European companies

Hackers are attacking many companies across Europe with stealth malware. ESET researchers have reported a dramatic increase in so-called AceCryptor attacks via ➡ Read more

IT security: Basis for LockBit 4.0 defused

Trend Micro, working with the UK's National Crime Agency (NCA), analyzed the unpublished version that was in development ➡ Read more

MDR and XDR via Google Workspace

Whether in a cafe, airport terminal or home office – employees work in many places. However, this development also brings challenges ➡ Read more

Test: Security software for endpoints and individual PCs

The latest test results from the AV-TEST laboratory show very good performance of 16 established protection solutions for Windows ➡ Read more

AI on Enterprise Storage fights ransomware in real time

NetApp is one of the first to integrate artificial intelligence (AI) and machine learning (ML) directly into primary storage to combat ransomware ➡ Read more

FBI: Internet Crime Report counts $12,5 billion in damage 

The FBI's Internet Crime Complaint Center (IC3) has released its 2023 Internet Crime Report, which includes information from over 880.000 ➡ Read more