Ransomware gangs are becoming increasingly sophisticated, not only in the methods they use to launch their malware attacks, but also in the strategies they employ to ensure a swift and successful ransom payment. A recent example of this was seen in an attack on Jewett Cameron, an Oregon-based company that specializes in manufacturing dog kennels and related pet products, along with fencing and gardening supplies. The attack sheds light on the evolving tactics of cyber-criminals and highlights the vulnerabilities companies face in today’s digital landscape.
On October 15, 2025, Jewett Cameron confirmed in a filing with the U.S. Securities and Exchange Commission (SEC) that its IT infrastructure had been breached by a prominent ransomware group. The attack led to the encryption of sensitive data within the company, including screenshots of internal meetings. These types of breaches are particularly concerning because they can contain not only operational details but also highly confidential financial and strategic information.
The exact method by which the attackers gained access to the company’s network remains unclear, but initial suspicions suggest that it may have been carried out through a phishing campaign or possibly facilitated by an insider threat. In this case, the ransomware group may have exploited a vulnerability in the company’s screen monitoring software, which allowed them to access sensitive materials—potentially including financial details crucial for the company’s operations.
Despite the seriousness of the breach, initial investigations suggest that the attackers did not gain access to sensitive data related to the company’s employees, customers, suppliers, or business partners. This is a fortunate outcome, as it prevents the hackers from using the information to execute additional forms of extortion or identity theft.
What’s noteworthy about this attack is the growing sophistication of ransomware gangs. These groups no longer rely solely on the traditional method of encrypting data and demanding a ransom for its release. Instead, they are increasingly employing tactics designed to increase the pressure on their victims, such as exfiltrating sensitive data and threatening to release it unless a ransom is paid quickly. This shift in strategy suggests that companies will need to become even more vigilant in securing their networks and protecting their internal communications to avoid falling victim to such attacks.
Join our LinkedIn group Information Security Community!
