The RansomEXX ransomware group claims the attack on BRP

August 31, 2022
RansomEXX Ransomware Threat Group Cyberattack BRP Bombardier Recreational Products Canada North America

Bombardier Recreational Products (BRP) suffered a cybercriminal attack last August 8, which the RansomEXX ransomware group claimed was their doing.

The affected Canadian manufacturer of Sea-Doo jet skis, Ski-Doo snowmobiles, motorcycles, Rotax engines, watercraft, and ATVs has immediately released an advisory and stopped all its operations after detecting malicious cyber activity.

BRP has approximately 20,000 personnel, and its annual sales reach about $6 billion. The more concerning part is that the company distributes its products to over 100 countries worldwide, implying that a minor disruption in its operation can have a critical financial impact.

Fortunately, the Canadian organisation released an update regarding the situation, stating that four of its major manufacturing sites in the US, Canada, Austria, and Finland resumed production. BRP expects the rest of its sites will follow by the end of the month.

In addition, the company unveiled the initial results of its internal investigation, showing that the attackers infiltrated its systems through a supply chain attack. BRP then assured everyone that they would notify all concerned individuals or corporations directly if the investigation found a severe data breach.

 

The RansomEXX ransomware group published the stolen files.

 

The BRP’s immediate reaction to the attack has triggered the RansomEXX ransomware group to release a list of stolen data on its leak site. Additionally, files that reached nearly 30 gigabytes of stolen data collected from the firm were included by the actors on the leak site.

Yesterday, the RansomEXX gang listed Bombardier Recreational Products on its leak site along with 29.9GB of files allegedly stolen from the firm.

RansomEXX provided samples of the stolen files, including passports and IDs, NDAs, contract renewals, and material supply chains. As of now, the revealed data does not include critical customer data, but the exposure of the documents still left a nasty remark for BRP.

The Canadian recreational product manufacturer then issued a statement, confirming that the leaked stolen data were accurate. However, they are still actively supporting affected individuals to lessen the adverse effects due to the breach.

RansomEXX has already attacked big-time firms such as Gigabyte, Hellmann, CNT, and Zegna. Bombardier Recreation Products is the latest targeted entity that the researchers have confirmed recently.

About the author

Leave a Reply