In March 2019, the aluminium producer was forced to shut down its plants and worldwide network after a ransomware attack led to computers in the company’s global network locking simultaneously. The malware issued a ransom note stating that files had been encrypted and demanded payments in bitcoin to restore access to the data. The encryption program called LockerGoga was reportedly used in the attack.
In the immediate aftermath the company switched to manual production at its plants with staff at 40 offices and manufacturing facilities told to disconnect devices from the network while security experts fixed the issue. The company stated that they did not pay the ransom.
In February 2020, insurance compensation related to this incident was confirmed by the company.
Want to discuss this case? You can purchase a 30 minute conference call with our analysts to discuss this case and the implications it has for your organisation. Just select the time and date that works for you:
We've done the analysis so you can make the decisions