Rompetrol Rafinare, a subsidiary of KMG International (KMGI), which operates Romania’s largest oil refinery Petromidia Navodari and a network of petrol stations across the country, announced that it faced a complex cyber attack in the night between 6 and 7 March.
The statement from the company said that the operational activity of the Petromidia refinery was not affected, and the customers were able to pay with cash or bank cards, but not with the company’s cards. To protect the data, the company has temporarily suspended the operation of its websites and the Fill & Go service, both for fleets and for individuals. The activity of Rompetrol’s petrol stations is carried out normally.
According to website BleepingComputer, the Hive Ransomware gang is behind the attack on Rompetrol. Hive is reportedly demanding a ransom of 2 million dollars from the company to receive a decryptor and not to leak allegedly stolen data.
