UAE’s Al Ashram Contracting hit by BlackCat’s data breach attack

September 21, 2023
UAE Al Ashram Contracting Construction BlackCat Data Breach Cyberattack

Al Ashram Contracting, one of the UAE’s leading construction companies, has become the latest victim of the notorious AlphaVM/BlackCat ransomware group. The data breach attack, which transpired on September 20, 2023, allegedly resulted in the loss of 257GB of sensitive corporate data uploaded to the threat group’s leak website.

For over 45 years, Al Ashram Contracting has played an important part in shaping the UAE’s skyline, contributing to the nation’s growth. Their expertise ranges from towering skyscrapers to intricate underground infrastructure projects, demonstrating their capability to handle projects of different scales and complexities in the country’s evolving construction sector.


AlphaVM/BlackCat ransomware group shared samples of Al Ashram Contracting’s stolen corporate information from the data breach attack.


As revealed by the threat group, the stolen data includes a trove of information such as ISO audit records, procurement records, AL ASHRAM CONTRACTING directory, suppliers Subcon library, legal files, and IT asset inventory & exchange account. This breach poses a significant risk to the company’s operations, potentially leading to legal and financial repercussions.

AlphaVM/BlackCat has not provided a deadline for Al Ashram Contracting to contact them before the stolen data is made public. The company has also not issued any official statement regarding this alleged data breach incident, leaving questions about the attack’s authenticity and scope.

According to investigations by cybersecurity experts at iZOOlogic, Al Ashram Contracting’s official website is still operational and functioning normally. Further, the company has not yet revealed whether they intend to negotiate with the ransomware group or pursue other ways to recover their stolen data.

There still is a growing threat posed by ransomware groups targeting organisations worldwide. Such incidents highlight the urgent need for companies to strengthen their cybersecurity measures, including effective data encryption, regular security audits, and employee training to recognise and mitigate ransomware attacks.

Updates on this incident will be provided as they become available.

About the author

Leave a Reply