Ybbstaler Unternehmen

Ybbstaler Unternehmen is the alias used for an organisation headquartered in Austria. No further details about its founding date, legal structure, or core business activities are provided in the source material. The organisation is referenced only by this alias in the available reports.

On 1 January 2024, threat actors gained unauthorised access to an email account belonging to a Ybbstaler company. The compromise originated from IP addresses located in France. Using the hijacked account, the attackers sent a fraudulent payment request to a business client. The request altered banking details by providing a false IBAN linked to a Portuguese account. The client transferred approximately €95,000 intended for outstanding invoices to the attacker‑controlled account. The full amount was lost as a result of the deception.

On 21 September 2023, a Villach‑based company associated with the Ybbstaler group experienced a ransomware attack. Its servers were infected with encryption trojan malware that rendered all files inaccessible. The perpetrators demanded a ransom payable in Bitcoin, described as tens of thousands of euros, for data restoration. The company has not made any payment to the attackers. The extent of the damage and any potential data loss remain unspecified in the reported sources.

The two incidents described are the only publicly reported cybersecurity events involving Ybbstaler Unternehmen in the sources consulted. They illustrate distinct attack vectors, namely business email compromise and ransomware encryption. No additional information about the organisation's size, market presence, or product portfolio is available from the provided material.