Dussmann Group

Dussmann Group, also known simply as Dussmann Group, is headquartered in Germany. The organisation operates as a corporate group comprising multiple subsidiaries across various sectors. Publicly available information identifies it as a parent entity that oversees the activities of its constituent companies. The group’s structure allows it to manage diverse business interests under a single ownership.

One of its subsidiaries, Dresdner Kühlanlagenbau GmbH (DKA), is described in incident reports as a refrigeration specialist. DKA focuses on the design, installation, and maintenance of refrigeration and air‑conditioning systems. This specialization places the subsidiary within the broader HVAC and cooling technology market. As part of the Dussmann Group, DKA benefits from the group’s administrative and financial support while maintaining its technical expertise.

On 28 July 2020, DKA became the target of a ransomware attack carried out by the Nefilim operation. The attackers encrypted four of the subsidiary’s domains and exfiltrated approximately 200 gigabytes of data, which included sensitive documents and AutoCAD files. Roughly 14 gigabytes of the stolen archive were later leaked online to increase pressure for a ransom payment. The encryption and subsequent data leak forced DKA to shut down servers as a precautionary measure, disrupting its operational capabilities.

Following the incident, Dussmann Group confirmed the breach and notified relevant authorities, including data protection agencies and Saxony’s State Office of Criminal Investigation. Legal charges were filed in connection with the attack. An external analysis conducted after the event did not identify any vulnerabilities in VPN gateways or exposed devices that could have explained the initial intrusion. The group’s statement emphasized that the precise intrusion vector remained unconfirmed despite the investigation.