Thales Group Falls Victim to Ransomware

Thales Group is a French multinational company that designs and builds electrical systems and provides services for the aerospace, defence, transportation and security markets.

Thales logo. Credits: Thales Group

On January 17, 2022 LockBit 2.0 Ransomware operator’s website stated that files belonging to encrypted and published.

LockBit, as well as other well-known cyber criminals behind ransomware, are attacking big companies. Their goal is to get access to inner enterprise information, encrypt it and ask for ransom. In exchange of money they guarantee victim their silence about security incident as well as decrypting previously encrypted files.

LockBit 2.0 website screenshot

Kaduu Team has analysed leaked files and we believe they do belong to Thales Group. All the files we have seen are source codes of various Thales products, including:

  • SpaceOPS product,
  • Thalisman,
  • Thales Trustnest Marketplace App

as well as others. Both Frontend and Backend files are leaked, some architecture files, ReadMe, docker files and databases configurations.

Comments are closed.