Florida real estate developer Stock Development this week confirmed it suffered a data breach in 2023 and 2024 that compromised names, Social Security numbers, driver’s license numbers, contact info, and bank account info.
Stock says it discovered the breach in March 2024, but that attackers first infiltrated its systems back in April 2023.
“On March 2, 2024, we became aware of unusual activity on our network. We promptly began working with cybersecurity experts to investigate and subsequently determined that an unauthorized third party gained access to a portion of our computer network. Based on our investigation, we believe they had access from April 25, 2023 to March 2, 2024,” the notice (PDF) to victims states.
Ransomware gang LockBit claimed responsibility for the attack on March 6, 2024, saying it stole 1 TB of data. The group demanded $155,000 in ransom. To prove its claim, LockBit posted images of what it says are files and directories stolen from Stock Development.
Stock has not verified LockBit’s claim. We do not yet know how many people were compromised in the attack, if Stock paid a ransom, or how attackers breached Stock’s network. Comparitech contacted Stock Development for comment and will update this article if it replies.
Stock is offering victims free identity theft protection via Experian.
Who is LockBit?
LockBit first appeared in 2019 and has claimed responsibility for thousands of ransomware attacks. In addition to date theft, the Russian cybercrime group’s malware encrypts computer systems so they can’t be used until a ransom is paid for a key to decrypt them.
LockBit claimed responsibility for 224 confirmed ransomware attacks in 2023 and 84 attacks in 2024. Those attacks compromised the data of 25.7 million people. The average ransom was $14.7 million
Seven of those attacks were also on construction and development companies.
This year, LockBit claimed an attack on Topack IT Solutions, which affected a large number of schools in Germany.
LockBit claimed another 424 unconfirmed attacks in 2024 that were not acknowledged by victims.
Ransomware attacks on US contruction
Ransomware attacks on US construction companies lock down computer systems and steal data. Companies are forced to pay a ransom in order to unlock their computers, or else face extended downtime, data loss, and putting data subjects at risk of fraud.
In 2023, Comparitech researchers logged 23 confirmed ransomware attacks on US construction companies, followed by 24 in 2024. Those attacks compromised relatively few records compared to other industries: 100,300 in 2023 and 94,500 in 2024.
Other recently confirmed such attacks include those on Edw. C. Levy Company, which notified 18,209 people of an October 2023 data breach, and Tecta America, which notified 22,573 people of a breach claimed by RansomHub in October 2024.
About Stock Development
Headquartered in Naples, Florida, Stock Development is a real estate developer that builds properties in Southwest Florida. Properties it built include:
- Grandézza in Estero
- Lely Resort
- Quail West
- Olde Cypress
- Secoya Reserve
- Black Bear Ridge in Naples
- Paseo in Fort Myers
- Hidden Harbor in South Fort Myers
According to its website, the company is an established builder in the communities of Twin Eagles, Fiddler’s Creek, Renaissance, and Bonita Bay. Stock is also building furnished model residences in Park Shore, the Moorings, and Estuary at Grey Oaks.
Source link
-
-
-
-
-
-
-
-
