Forward Air suffers a ransomware attack by a new ransomware operator, impacting their operational and information technology systems.
Forward Air suffers a ransomware attack by a new ransomware operator, impacting their operational and information technology systems.
Forward Air Corp. is a Tennessee-based trucking and air freight logistics company that employs over 4,300 people.
Forward Air detected an IT security incident on December 15, that impacted the functionality of their computer systems. The cyberattack forced the company to shut down its systems to prevent the spread of malware within their network.
“Although the company is actively managing this incident, it has caused and may continue to cause a delay in parts of the company’s business and may result in a deferral or loss of revenue as well as incremental costs that may adversely impact the Company’s financial results,” said Forward Air in the filing.
According to FreightWaves, the attack led to business disruption and is still actively responding to the attack.
The company initiated response protocols, commenced an investigation and engaged the assistance of cybersecurity and forensics professionals.
“The company’s internal security teams, supplemented by leading cyber defence firms, took active steps to assess, contain and remediate this incident. Systems recovery efforts are in process, and the company currently estimates those efforts to be largely complete in the coming week,” said Forward Air.
According to sources, Forward Air was hit by a new ransomware operation known as Hades. The bad actors left a text file on Forward Air systems.
“By the way, everything is possible to recover (restore), but you need to follow our instructions. Otherwise you cant get back your data (NEVER),” the message states.
The operators did not state its ransom for restoring access instead provided a link to a site on the dark web.
The company did not disclose any information about the ransom demanded nor about the data stolen.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?