AC Laser, a Melbourne-based laser-cutting company, has confirmed that it fell victim to a ransomware attack carried out by the notorious INC ransomware gang. The company detected unauthorized activity on its network nearly two months ago, in the early morning hours. At the time, the attack was still ongoing, but the firm acted quickly, disconnecting its systems to prevent further damage. With assistance from IT specialists and a robust backup procedure, AC Laser was able to fully recover its data, minimizing the impact on its operations.
Despite the quick response and successful recovery, the company’s troubles were far from over. On November 23, the INC ransomware group listed AC Laser’s name on its dark web leak site, signaling that company data had been exfiltrated during the attack. Although the exact data stolen remains unclear, the group posted a sample of the files, including internal business documents such as tax invoices, meeting minutes, and file trees. Among the leaked documents were personal details, including names, email addresses, mobile phone numbers, and work phone numbers.
In response to the breach, AC Laser has pledged to bolster its security measures to protect against future incidents. The company has hired a skilled forensic IT team to investigate the breach further and overhaul its cybersecurity practices. This investigation will help ensure that AC Laser’s systems are better protected moving forward, and it will guide the company in implementing stronger security protocols.
Notably, AC Laser did not pay the ransom or communicate with the attackers, adhering to industry best practices and government advice. The company has taken immediate steps to strengthen its defenses and mitigate the risks of future attacks. As it moves forward, AC Laser is focusing on improving its digital security infrastructure to safeguard its operations and data from similar cyber threats in the future.
Reference:
