Oregon-based fencing and pet solutions provider Jewett-Cameron Company was recently targeted in a cyberattack that resulted in disruption and the theft of sensitive information.
Jewett-Cameron makes kennels, crates and other accessories for dogs, as well as fencing, specialty wood, and gardening products.
In a Tuesday filing with the SEC, the company revealed that it detected an intrusion into its IT environment on October 15.
The investigation launched into the incident is ongoing, but Jewett-Cameron has determined that the hackers deployed “encryption and monitoring software” on corporate IT systems.
The attack has led to disruptions and the company being unable to access some business applications related to operations and corporate functions.
The company believes the intrusion has been contained and it’s working on restoring impacted systems. There is no evidence to date that the personal information of employees, customers, vendors or suppliers has been compromised.
The hackers appear to have obtained “images of video meetings and computer screens that may contain sensitive company information”.
“Current analysis indicates that the data exfiltrated primarily relates to IT related information and financial information the Company has been gathering and analyzing over the past few weeks in preparation of filing with the Securities and Exchange Commission its Annual Report on Form 10-K for the fiscal year ended August 31, 2025, which the Company expects to release in mid-November,” Jewett-Cameron explained.
The company said threat actors have threatened to make public the stolen information unless a ransom is paid.
This brief description of the incident indicates that Jewett-Cameron has been targeted in a double-extortion ransomware attack that involved the encryption of files and the theft of information.
It’s unclear which ransomware group is behind the attack. SecurityWeek has not seen any known threat actor naming Jewett-Cameron on its leak website.
Jewett-Cameron believes incident response costs will be covered by its cybersecurity insurance policy, but admits that the disruptions may also result in material impact on operations.
Related: Microsoft Revokes Over 200 Certificates to Disrupt Ransomware Campaign
