Ransomware Attack On French Ministry of Justice

France’s justice ministry was hit by a cyber attack on Friday 28th January and an investigation has been launched. Cyber criminals though to be using Lockbit 2.0 ransomware claim to have breached the Ministry's systems encrypted its files and are threatening to make public the files stolen from the government organisation.

The criminals have reportedly threatened that the stolen data will be published if the ransom is not paid by 10 February.  

While the extent of the attack remains unclear, the Ministry said in a statement  it had become aware of the alert and immediately took steps to carry out the necessary checks, in conjunction with the relevant competent departments, without providing further information about the operation's scale. No other information has been released about the ransom demand by French government sources. 

Other French organisations have been targeted with the malware in the past. Earlier this month the Lockbit 2.0 group published data from French defense and security firm Thales on its website and the site also contains data from French energy Schneider Electric dated December 2021. The Lockbit 2.0 gang has also claimed responsibility for a similar attack on the services of Saint-Cloud’s town hall in the outskirts of Paris. French daily Le Parisien reported that the town’s mayor had already announced that he would not pay a ransom.

The cyber attack comes a day after the national Court of Auditors published a Report on the digital transformation of the justice ministry, which points out that “a lot of work remains to be done” when it comes to the security of its information systems. 

Politico:     Reuters:      Euractiv:       InfoTechlead:    The Hindu:      CComptes:    Security Week

You Might Also Read: 

Canadian Government Ministry Under Attack:
 

« Academic Institutions At Risk Of Cyber Attacks
‘Honey Trap’ Sites Recruiting Israeli Spies »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

International Conference on Information Systems Security & Privacy (ICISSP)

International Conference on Information Systems Security & Privacy (ICISSP)

The ICISSP event is a meeting point for researchers and practitioners to address security and privacy challenges concerning information systems.

Guardian360

Guardian360

The Guardian360 platform offers unrivalled insight into the security of your applications and IT infrastructure.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Cradlepoint

Cradlepoint

With Cradlepoint customers leverage the speed and economics of wired and wireless Internet broadband for branch, mobile, and IoT networks while maintaining end-to-end visibility, security and control.

Deep Instinct

Deep Instinct

Deep Instinct provides comprehensive defense that is designed to protect against the most evasive unknown malware in real-time, across an organization’s endpoints, servers, and mobile devices.

Executive Women's Forum (EWF)

Executive Women's Forum (EWF)

The Executive Women's Forum is the largest member organization serving emerging leaders and influential female executives in the Information Security, Risk Management and Privacy industries.

IDnow

IDnow

IDnow is the world’s fastest, most flexible and most secure identity verification platform, delivering instant verification of the identity documents used by 7 billion people.

Gradcracker

Gradcracker

Gradcracker is THE careers website for Science, Technology (including Cybersecurity), Engineering and Maths university students in the UK.

Bessemer Venture Partners (BVP)

Bessemer Venture Partners (BVP)

Bessemer Venture Partners was born from innovations that literally forged modern building and manufacturing. Today, our team of investors works with people who want to create revolutions of their own.

Get Indemnity

Get Indemnity

Get Indemnity are specialist insurance brokers with experience working on a wide range of innovative business insurance products that combine risk management, indemnity and incident response services.

Threat Status

Threat Status

Threat Status are a Threat Intelligence company. We are the developers of Trillion. A cloud based Security As A Service (SaaS) platform.

International Cybersecurity Forum (FIC)

International Cybersecurity Forum (FIC)

The International Cybersecurity Forum (FIC) has established itself as the benchmark event in Europe in terms of digital security and trust.

Pixm

Pixm

Pixm’s computer vision based approach offers a truly unique and effective means to protect organizations from web-based phishing attacks.

Constella Intelligence

Constella Intelligence

Constella Intelligence provides digital risk protection services to quickly and efficiently disrupt cyber attacks and data breaches before they occur.

SequelNet

SequelNet

SequelNet is an emerging MSP, providing 360° business IT solutions and consulting services.

Corix Partners

Corix Partners

Corix Partners is a Boutique Management Consultancy Firm focused on assisting CIOs and other C-level executives in resolving Cyber Security Strategy, Organisation and Governance challenges.