The cybercriminal group Lockbit 5.0 has published the data of the technology consulting firm OrekaIT on its dark web leak portal. The criminal group set May 1 as the date of inclusion of the victim in its extortion list.
The attackers have established an ultimatum that expires on May 16 for the ransom payment. The economic amount demanded for the release of the stolen information has not been made public.
The Alavesa firm leads digital transformation
OrekaIT has its headquarters in Álava and employs a staff of 130 workers. The company specializes in consulting and digital transformation for large corporations.
The company holds SAP partner certification and develops projects with Microsoft and Salesforce technologies. Its service portfolio covers cloud solutions, artificial intelligence, and the internet of things.
The consultancy's clients operate in strategic sectors such as aerospace, chemical, pharmaceutical, and automotive. It also provides services to distribution, fashion, machinery, and food industries.
Spain concentrates European attacks by Lockbit
This incident adds to a long list of Spanish organizations targeted by the same criminal group. Lockbit previously attacked the Madrid-based consultancy Renovagy Energía Control y Sistemas S.L.
Other confirmed victims include the Murcian distributor Fruca Marketing and the Catalan dealership Grupo Covesa. The Vitoria-based energy company Cegasa and the law firm Sagarday Abogados are also among those affected.
Statistics place Spain as one of the territories most affected by this group in Europe. Between April 2023 and April 2024, at least 19 Spanish companies suffered direct attacks from Lockbit.