A Canadian company that supplies fighter jets for airborne training exercises has been hit with a ransomware attack.
In a brief statement to The Record, Top Aces confirmed Wednesday that it is in the process of investigating the incident.
The Montreal-based firm — which said it is the “exclusive adversary air provider to the Canadian and German armed forces” — showed up on the leak site for the LockBit ransomware group.
Top Aces was founded in 2000 by a group of former fighter pilots and now says it has the “the largest worldwide footprint of privately-held operational fighter aircraft.”
In addition to its work with Canada, Germany, Israel and other countries, the company signed a lucrative contract with the U.S. Air Force in 2019. It explicitly mentions providing tools for training to defend against Russian weaponry.
The LockBit ransomware group gave the company a deadline of May 15 before it leaks the 44GB of data it allegedly stole.
LockBit continues to be one of the most prolific ransomware groups working, with hundreds of attacks over the last year. They have attacked at least 650 organizations so far this year, according to data collected by Recorded Future.
The group recently made waves with an attack on a popular German library service and another on systems connected to the Secretary of State for Finance of Rio de Janeiro.
The Australian Cyber Security Centre (ACSC) issued a security advisory last August warning of a sudden spike in LockBit ransomware attacks.
The group has been operating since September 2019 and was a marginal player before developing a new version of their Ransomware-as-a-Service platform, called LockBit 2.0.