Ransomware

Ransomware Group Takes Credit for National Presto Industries Attack

A ransomware group has claimed responsibility for a March cyberattack on National Presto Industries subsidiary National Defense Corporation.

Published

A ransomware group has claimed responsibility for a March cyberattack on National Presto Industries subsidiary National Defense Corporation.

The InterLock ransomware group over the weekend claimed responsibility for a disruptive cyberattack on National Presto Industries that occurred on March 1.

The home appliance and ammunition company disclosed the incident in early March, in a regulatory filing with the SEC, saying that it was working on restoring systems, while temporary measures had been implemented to maintain critical functions.

National Presto Industries did not say what type of cyberattack it fell victim to, but the outage suggested that ransomware was likely involved.

Over the weekend, InterLock added National Presto Industries’ subsidiary National Defense Corporation to its Tor-based leak site, confirming that ransomware was indeed used in the attack.

The ransomware gang says it stole vast amounts of data from the company, including roughly 450,000 folders containing close to 3 million files.

National Presto Industries has made no public statement regarding the group’s claims. SecurityWeek has emailed the company for additional information and will update this article if a reply arrives.

Advertisement. Scroll to continue reading.

InterLock told DataBreaches that it attempted to extort the company, but negotiations have been unsuccessful as National Defense Corporation did not consider the incident to be major.

The company allegedly told InterLock that the stolen information would be of no value to others, and that it would experience minimal financial impact from the data breach.

National Defense Corporation also allegedly told InterLock that it had already restored its systems, returning all operations back to normal.

The ransomware gang, on the other hand, claims to have encrypted the systems of at least three National Presto Industries entities, including AMTEC, which makes ammunition and explosives for the military and law enforcement.

Related: Russian Espionage Group Using Ransomware in Attacks

Related: UK Software Firm Fined £3 Million Over Ransomware-Caused Data Breach

Related: Ransomware Groups Increasingly Adopting EDR Killer Tools

Related: New Ransomware Group Claims Attack on US Telecom Firm WideOpenWest

In this article:, , ,

Related Content

Data breach

Data Breaches

Kodak Admits Data Breach After ShinyHunters Hack Claims

Kodak told SecurityWeek it believes there is no threat to its systems or operations as a result of the cybersecurity incident.

3 days ago

Malware & Threats

Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack

The attackers deployed a new Go-based backdoor that uses Microsoft Teams servers for command-and-control.

4 days ago

Data Breaches

iRhythm Confirms Data Stolen in Hack

The digital health company said it learned of the breach on June 8 and the attackers demanded a ransom.

4 days ago

Data Breaches

Cybercrime Group Claims Novo Nordisk Hack

The hack-and-leak group FulcrumSec claims to have stolen 1.3TB of data from the pharmaceutical giant.

5 days ago

Ransomware

Ransomware Attack Shuts Down Mills of Australia’s Second-Largest Sugar Producer

Mackay Sugar was targeted in a cyberattack carried out by a threat group known as The Gentlemen.

5 days ago

Cybercrime

Ukrainian Man Pleads Guilty in US to Conti Ransomware Charges

Oleksii Oleksiyovych Lytvynenko admitted to working on the development of a loader for the Conti gang.

6 days ago

Data Breaches

Ozempic Maker Novo Nordisk Says Hackers Breached IT Systems

The pharmaceutical giant says the attackers gained access to personal data stored on the compromised systems. 

6 days ago

Data Breaches

French Government Messaging Platform Breached by Mysterious ‘Misere’ Hacker

French officials say roughly 73,000 government accounts were affected, while the threat actor claims to have stolen messages and user data from the sovereign...

6 days ago

Copyright © 2026 SecurityWeek ®, a Wired Business Media Publication. All Rights Reserved.

Exit mobile version