Cyber Incident Victim: Invicta Group

The Invicta Group, a French company specializing in wood heating systems, experienced a disruptive cyberattack that halted operations starting the week of April 25, 2021. According to employee testimony reported by Lylian Casier, the incident began on Sunday, April 24, when staff received SMS notifications alerting them to a temporary work stoppage. The company confirmed in an official press release that the cyberattack compromised "some of the servers," prompting management to proactively suspend business activities as a containment measure. By Monday morning, April 25, critical operational sites including the Vivier-au-Court foundry facility and likely the Donchery corporate headquarters became paralyzed. This forced suspension affected approximately 250 employees who were placed on technical shutdown—a non-working status with pay—pending restoration of systems.

Invicta's leadership characterized the incident as having "the impact of temporarily stopping activity, at our initiative," indicating the shutdown was a deliberate response to contain the attack's spread. The company did not disclose technical details regarding the attack vector, perpetrator identity, or specific compromised systems beyond confirming server disruptions. No evidence suggested data theft or ransomware demands were involved based on available reports. Operations remained at a standstill throughout the week as technical teams worked to restore systems, with management committing to resume normal activities "as soon as possible" without providing a specific timeline. The prolonged downtime at multiple facilities demonstrated the attack's severity in disrupting both manufacturing and administrative functions across the organization.