Cyber Incident Victim: Coaxis Solutions
Date:
Dec 2023
Location:
France
Summary
A cybersecurity incident impacted Coaxis Solutions, an IT outsourcing and infrastructure hosting provider, disrupting operations at its Marmande and Fauguerolles facilities. The attack, confirmed after initial suspicions of hardware failure, marked the company's first such breach in over 20 years. A crisis team mobilized over a dozen personnel to restore systems, with partial functionality still unavailable days later; full recovery was anticipated within a week despite typical timelines being longer. While the incident caused no direct financial loss, hundreds of clients across accounting, viticulture, healthcare, tourism, and industrial sectors experienced service interruptions. The organization isolated affected systems to protect client data, confirmed backups remained intact, and established a dedicated communication channel ([email protected]) for stakeholders. An investigation into the attack's origin is ongoing.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On December 8, 2023, Coaxis Solutions, an IT outsourcing and infrastructure hosting provider based in Marmande and Fauguerolles, experienced a disruptive cyber incident. The company’s technical teams initially suspected a hardware failure upon detecting system irregularities but later confirmed a deliberate cyberattack following extended investigations. This marked the first successful cyber intrusion against Coaxis in its over twenty years of operation. General Director Joseph Veigas activated an internal crisis cell immediately after confirming the attack’s malicious origin, mobilizing more than ten personnel to restore infrastructure operations. The attack involved confirmed human intent, though specific intrusion vectors or attacker techniques remained undisclosed. Coaxis had proactively engaged Orange Cyberdefense months prior to develop response scenarios for potential cyber incidents despite not considering themselves a high-risk target. By December 11, full system restoration remained incomplete, with Veigas acknowledging industry averages of 23 days for recovery while expressing optimism about resolving disruptions within one week. No direct financial losses to Coaxis were reported at this stage.
The incident impacted several hundred Coaxis clients across accounting, wine production, industrial manufacturing, healthcare, and tourism sectors, including specific disruptions to client Wendel’s operations. Coaxis severed partial system access points to isolate compromised segments and prevent potential data exfiltration from client environments. Backup systems remained fully operational and unaffected by the attack, enabling recovery efforts without secondary data loss. The company established a dedicated communication channel ([email protected]) for client updates and situation reports while continuing restoration work. Law enforcement investigations into attack attribution and methodology were ongoing as of the reporting date, with preliminary findings expected by late December 2023. No ransomware claims, data theft evidence, or extortion demands had been publicly documented in connection with the incident at the time of reporting.