Cybersecurity

Tura Scandinavia AB Encounters Another Cyberattack Following intrusion in December

Tura Scandinavia AB allegedly finds itself targeted by the LockBit ransomware group, marking another episode in the company’s history of cybersecurity challenges. This cyberattack on Tura Scandinavia AB, accompanied by a now-closed deadline date, was posted on the dark web where the threat actor, the LockBit ransomware group, posted its claims of the intrusion. 

The LockBit ransomware group has escalated the situation by adding Tura Scandinavia AB to its dark web portal, claiming to sell access to the corporate network. The cybercriminals boast possession of all login credentials and passwords to both internal and external services. Notably, the website is currently non-functional, and the ransom deadline timer has been temporarily halted.

The Tura Scandinavia AB Cyberattack; LockBit takes Responsibility 

Tura Scandinavia AB Cyberattack
Source: Twitter

According to the threat actor’s post, the alleged cyberattack on Tura Scandinavia AB succeeded because several vulnerabilities in Tura Scandinavia’s corporate network facilitated unauthorized access. Shockingly, LockBit claimed that the internal servers lacked fundamental security measures such as monitoring systems, antivirus software, and firewalls. 

The ransomware group alleges that Tura Scandinavia’s refusal to address these issues and reluctance to meet their demands have led to the sale of access to the compromised corporate network eventually causing the Tura Scandinavia AB cyberattack. 

The Cyber Express sought clarification on the situation by reaching out to Tura Scandinavia AB. As of now, no official statement or response has been received, leaving the claims surrounding the cyberattack on Tura Scandinavia AB unverified. Speculation arises regarding a potential ransom deal, suggested by the paused ransom timer, yet the lack of an official update from the organization leaves the situation ambiguous.

The Last Year’s Cybersecurity Incident; Threat Actor Unknown

Tura Scandinavia AB Cyberattack update
Source: Tura Scandinavia AB

This incident is not the first time Tura Scandinavia AB has encountered a cyberattack. In an official notice from the previous year, the company addressed a “cybercrime” affecting its IT systems and operations. The notice emphasized the ongoing efforts to restore normal operations, minimize data loss, and assess the financial impact of the attack. Notably, law enforcement was notified, reflecting the seriousness of the situation.

Apart from the previous incident, The Cyber Express is closely monitoring the situation of the current one, awaiting updates on the Tura Scandinavia AB cyberattack and any potential data leak. Given the organization’s history, questions linger about the similarity between the current incident and the previous year’s attack. 

We’ll update this post once we have more information on the hacker claims and any new developments surrounding the Tura Scandinavia AB data breach. 

Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.