The ransomware plans to release the stolen data to the public if they do not receive a ransom.
The Portuguese organization Águas e Energia do Porto, the largest supplier of drinking water and electricity in the city of Porto, said on February 8 that it had been subjected to a cyberattack. The city's water and electricity supplies were reportedly unaffected by the hackers.
According to cybersecurity expert Dominic Alvieri, on February 18, the LockBat group posted on its website an announcement about the hacking of the Portuguese organization with a countdown timer and the threat of publishing stolen data. The attackers gave the company time to think until March 7.
“Due to the incident, some customer support services have experienced restrictions. As the company's response options are limited, customers are encouraged to contact us through alternative means for guidance on how best to handle their requests,” Águas e Energia do Porto said in a statement.
Representatives of the enterprise also said that they contacted the national cybersecurity center and the Portuguese police for help in investigating and eliminating the consequences of the incident.
LockBit is increasingly attacking government and municipal organizations around the world. Their databases often contain millions of lines of citizens' personal information that hackers can sell even if they don't receive a ransom.
In the middle of the month, we wrote that LockBit demanded $80 million from the Royal Mail of the United Kingdom, and in early February - about the ION Group hack, which significantly affected trade transactions in the US and Europe.