Ransomware Group: LOCKBIT3

VICTIM NAME: vikurverk[.]is

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the LOCKBIT3 Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page associated with the victim, Vikurverk ehf., reveals that this company, located in Iceland, engages in the construction and sales of motorhomes and caravans. The page provides a brief description of the company’s offerings, highlighting its focus on both new and used caravans. Notably, the post was published on November 1, 2024, and the leak appears to originate from the LockBit 3 ransomware group. While the page does not specify a compromise date, it was updated on the same day of the publication, suggesting that this might be the date of the ransomware incident.

Further examination of the leak page indicates there is no disclosed information regarding employees or third-party involvement. Although there are no direct downloads or sensitive documents mentioned in the summary, the presence of the leak implies the potential exposure of proprietary company data. The absence of personal employee details and specific data points suggests a focus on the company’s operational identity. Additionally, the lack of visual content, including screenshots or internal documents, leaves the specifics of the data breach to speculation. Overall, this incident highlights ongoing threats in the construction sector, underscoring the need for robust cybersecurity measures.