Arntz Optibelt, a medium-sized company in Ostwestphalia, has been grappling with a cyberattack for days. This incident highlights the growing threat of digital extortion and cybercrime facing businesses today.
The attack and its immediate consequences
Arntz Optibelt, a company based in Höxter, Ostwestphalia, that manufactures drive belts for various industries, has fallen victim to a cyberattack. The company, which recently reported a global turnover of about 300 million euros and employs more than 2,000 people, is currently experiencing significant disruptions to its operations.
The most immediate and visible effect of the attack is the complete shutdown of the company’s email system. Attempts to contact the company’s spokesperson, Viviane Geisler, through official channels result in error messages, with emails bouncing back to senders within seconds. Geisler has been forced to communicate using a personal GMX account.
While the full extent of the damage is yet to be determined, the company has acknowledged that the cyberattack has caused “restrictions” to its operations. Geisler stated, “We have initiated appropriate measures and set up a task force,” adding that they are “working hard to maintain the business capabilities of all our locations worldwide” with the support of specialists.
The investigation and broader implications
The incident has prompted an investigation by the Cybercrime Unit of the Criminal Investigation Department in Bielefeld, located about 70 kilometers from Höxter. Police spokesperson Hella Christoph confirmed the ongoing investigation, though details remain scarce. Media reports suggest that the State Criminal Police Office in Düsseldorf, which houses a cybercrime competence center, has also been called in to assist.
This attack on Arntz Optibelt is far from an isolated incident. According to the Federal Criminal Police Office, 137 companies based in Germany were extorted via the dark web following cyberattacks in 2022 alone. This figure doesn’t include cases where victims paid ransoms and thus didn’t appear on the dark web.
The rise of ransomware attacks
Many recent cyberattacks involve ransomware, a type of malicious software that restricts access to data and systems. Cybercriminals often demand large sums of money in exchange for decrypting the data. They may also threaten to publish sensitive information stolen during the attack if the ransom isn’t paid.
A recent example occurred in Bielefeld in April, where a fertility clinic was targeted. The hackers encrypted all data and sent a ransom note demanding a six-figure sum in US dollars or Bitcoin. Fortunately, in this case, security specialists were able to recover the data without paying the ransom.
Protecting against cyber threats
The increasing frequency of cyberattacks has pushed digital security to the forefront for many businesses and industry associations. Oliver Horst, spokesperson for the Chamber of Industry and Commerce in Ostwestphalia, notes that “companies’ awareness of cybercrime risks is steadily increasing.”
While many businesses have invested in security systems, virus protection, and employee training, vulnerabilities remain. Björn Hagedorn, a Cyber Security Consultant at IT service provider HO-Systeme, emphasizes that “90 percent of all attacks begin with human weaknesses, errors, and curiosity.”
Hagedorn recommends implementing secure passwords company-wide and establishing a password manager as a quick protective measure. He also stresses the importance of technical measures such as firewalls, backups, and endpoint and email security. Some service providers now offer to test a company’s IT systems for vulnerabilities, helping to identify and close potential entry points for cybercriminals.
As the Arntz Optibelt case demonstrates, cybersecurity is an ongoing challenge that requires constant vigilance and adaptation from businesses of all sizes.
