Who: Johnson Controls International, a multinational conglomerate specializing in industrial control systems and security equipment, fell victim to a ransomware attack by the Dark Angels ransomware gang in September 2023.
What: The cyberattack involved unauthorized access, data exfiltration, and ransomware deployment, leading to a data breach. The Dark Angels gang claimed to have stolen over 27 TB of confidential data and demanded a $51 million ransom.
How: The attack originated from the firm's Asia offices, spreading throughout the network and forcing a shutdown of IT infrastructure, impacting customer-facing systems. Johnson Controls confirmed expenses of $27 million for responding to and remediating the cyberattack. Despite the breach, the company believes unauthorized activity is contained, and digital products and services are available. Ongoing assessments may result in increased costs as data is analyzed with external cybersecurity experts.
Dark Angels ransom note in Johnson Controls cyberattack