Hodson Event Entertainment

Hodson Event Entertainment, also known by the acronym HEE, is an organization headquartered in the United States of America. The organization's name includes the phrase "Event Entertainment", which reflects its involvement in that sector. It is referred to in public sources both by its full legal name and by the shortened alias HEE. No further details about its size, workforce, or specific service offerings are provided in the available source material. The organization's public profile is primarily known through a cybersecurity incident that occurred in late 2020.

On November 3, 2020, a ransomware group gained unauthorized access to a Facebook account associated with Hodson Event Entertainment. The attackers used the compromised account to run advertisements that pressured an Italian beverage company to meet an extortion demand. The ransomware actors claimed to have exfiltrated approximately two terabytes of confidential data from the beverage company. The responsible threat actors were identified as the Ragnar Locker Team. Through the hijacked Facebook page, the attackers were able to disseminate their messages to an audience exceeding seven thousand users. The fraudulent advertising spend generated before the activity was detected resulted in financial charges against the organization's account.

The incident exemplifies an evolving ransomware tactic where threat actors employ social media advertising for public shaming and coercion. In addition to the ad campaign, the attackers reportedly coordinated call center operations to intimidate the targeted victim into paying the ransom. A critical security deficiency was the absence of two-factor authentication on the compromised Facebook account. This missing authentication layer allowed unauthorized individuals to log in and take control of the account. Consequently, the attackers could not only access the account but also incur ad spend without the organization's consent. While the organization's core business activities remain unspecified beyond its name, the event highlights the importance of basic account protections for entities operating in the event entertainment space.