Visser Precision Manufacturing, a supplier to a number of major defense companies — including Lockheed Martin, Boeing, General Dynamics, and SpaceX — is the target of a ransomware attack, with purported stolen documents reportedly already showing up online. The company is a small enough defense contractor to lack sophisticated cyber defenses, the kind of vulnerability the CMMC is intended to address. Visser acknowledged an incident, but stated that “business is operating normally.”
DoppelPaymer, the ransomware believed used, typically steals data before encrypting it on the victim’s computer, enabling the group running it to post the material to their website. Other recent victims appear to include Pemex, an oil company owned by the Mexican government; and Citrix, a French telecom company.