Lacroix Group, a leading technological equipment giant specializing in embedded and industrial Internet of Things (IIoT) systems, recently faced a ransomware attack, which resulted in the temporary closure of three of its production sites. This article provides an overview of the incident, Lacroix's response, and highlights the importance of robust cybersecurity measures.
Lacroix Group has taken immediate action in response to the ransomware attack. The affected facilities located in Beaupréau (France), Willich (Germany), and Zriba (Tunisia) have been temporarily closed. The company has launched thorough investigations to contain the attack and protect its systems and data. Local infrastructures were encrypted, and efforts are underway to identify any potential data exfiltration. To ensure a secure restoration process, the three sites will remain closed for the week, with operations and system restoration expected to take a few days.
Lacroix aims to reopen the affected sites on Monday, May 22nd. However, the exact timeline for production resumption is yet to be determined. In response to the situation, Lacroix has implemented partial activity measures and devised a tailored management and restart plan for each site. Louis Pourdieu, General Manager of the Electronics EMEA activity, is actively communicating with customers and suppliers to provide updates on the closure and restart conditions.
Although the affected sites represent 19% of Lacroix's total sales in 2022, the impact on the projected performance for 2023 is expected to be minimal. This is attributed to a favorable calendar week with only three days of production loss. Lacroix Group remains committed to minimizing the disruption caused by the cyberattack and ensuring a swift recovery.
Ashish Gangar, our Director at Armoryze stresses the significance of cybersecurity measures that go beyond compliance requirements. Ashish highlights that preventable cyber threats, such as ransomware, phishing, and malware, can be mitigated through basic cyber essentials practices such as network segmentation, regular backups, patching, and vulnerability assessments. Organizations aiming to stay ahead of cybercriminals and safeguard their operations should prioritize positive security behaviors, treating them as core values, and provide employees with the necessary security training.
The attack on Lacroix Group is a stark reminder of the increasing threat cyberattacks pose to businesses, irrespective of their size or industry. It follows a ransomware incident that affected Norwegian software supplier DNV approximately six months ago, impacting around 1,000 shipping vessels. The incident underscores the critical need for proactive cybersecurity measures and collaboration between businesses, authorities, and cybersecurity experts to contain attacks and prevent future breaches.
Lacroix Group's decision to temporarily close three factories in response to the ransomware attack demonstrates its commitment to maintaining the security and integrity of its operations. With ongoing recovery efforts and an increased focus on cybersecurity, the company is determined to overcome this setback and emerge stronger in the face of evolving digital threats.
Don't leave your business vulnerable to cyber threats! Armoryze, your reliable cybersecurity partner, offers cutting-edge Managed Detection and Response services to fortify your defences and protect your valuable assets. Schedule a complimentary call today to assess your unique security needs and discover how Armoryze can safeguard your business from the ever-evolving cyber landscape. Contact us now to schedule your free consultation and secure your future!