{"id":42948,"date":"2021-09-20T19:43:00","date_gmt":"2021-09-20T19:43:00","guid":{"rendered":"http:\/\/07fb114e-4a1c-4033-a9ea-a2ae2c2acdce"},"modified":"2021-09-20T19:43:00","modified_gmt":"2021-09-20T19:43:00","slug":"iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/","title":{"rendered":"Iowa farm services provider hit with BlackMatter ransomware and $5.9 million ransom"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/www.zdnet.com\/a\/hub\/i\/r\/2021\/06\/30\/9c9e2a4b-8e51-4a70-a433-02942603a3b7\/thumbnail\/770x578\/43f316c36f978eb9ebc703b21e7fbe76\/copy-of-farmer-grain-bin-1.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>New Cooperative &#8212; an Iowa-based farm service provider &#8212; has been hit with a ransomware attack, continuing a streak of incidents affecting agricultural companies this year.&nbsp;<\/p>\n<p>The company did not respond to requests for comment but <a href=\"https:\/\/www.bloomberg.com\/news\/articles\/2021-09-20\/iowa-based-grain-cooperative-hit-with-ransomware-attack\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" data-component=\"externalLink\">confirmed<\/a> to Bloomberg News that it was suffering from a &#8220;cybersecurity incident&#8221; that impacted some of its devices and systems. They told Bloomberg reporters that they took systems offline to &#8220;contain the threat.&#8221;<\/p>\n<p>Ransomware expert Allan Liska shared screenshots of the BlackMatter ransomware leak page with ZDNet, showing the group had troves of financial documents, network information for multiple companies involved with New Cooperative, the social security numbers and personal information for employees, R&amp;D files and the source code for a farmer technology platform called Soil Map.&nbsp;<\/p>\n<p>The ransomware group claims to have 1,000GB of data and has set a timer that they say expires at noon on September 25.<\/p>\n<p>Liska confirmed that other documents show BlackMatter is demanding a $5.9 million ransom.<\/p>\n<p>On social media, multiple security researchers <a href=\"https:\/\/twitter.com\/argevise\/status\/1440026528176345097\" target=\"_blank\" rel=\"noopener noreferrer\" data-component=\"externalLink\">leaked chats<\/a> between negotiators for New Cooperative and BlackMatter operators. Representatives for New Cooperative repeatedly say they are part of the much-discussed &#8220;16 critical sectors&#8221; that US President Joe Biden said was off-limits to ransomware actors in conversations with Russian President Vladimir Putin.<\/p>\n<p>In addition to saying they were part of the country&#8217;s critical infrastructure, they noted that there would be &#8220;public disruption&#8221; to the grain, pork and chicken supply chain if they are not back up and running.&nbsp;<\/p>\n<section class=\"sharethrough-top placeholder\" data-component=\"medusaContentRecommendation\" data-medusa-content-recommendation-options=\"{&quot;promo&quot;:&quot;promo_zd_recommendation_sharethrough_top_in_article_desktop&quot;,&quot;spot&quot;:&quot;dfp-in-article&quot;}\"> <\/section>\n<p>The BlackMatter threat actors refuse to back down, saying only financial losses will be incurred from the attack. The chats also show that New Cooperative said they would have no choice but to contact CISA if they are not back up and running within the next 12 hours.<\/p>\n<p>CISA did not respond to requests for comment, but the company told multiple outlets that law enforcement had already been contacted.&nbsp;<\/p>\n<p>Reuters <a href=\"https:\/\/www.agriculture.com\/markets\/newswire\/update-3-iowa-farm-services-firm-systems-offline-due-to-cybersecurity-incident\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" data-component=\"externalLink\">reported<\/a> that the cooperative is involved in a variety of aspects of the grain business, including running grain storage elevators, selling fertilizer, buying from farmers and providing technology to farmers.&nbsp;<\/p>\n<p>Don Roose, president of US Commodities in West Des Moines, Iowa, told the outlet that this was an especially important week for farmers because this is when harvests begin to ramp up, particularly for crops like soybeans. According to Bloomberg, New Cooperative said it is working with its customers to get grain to animals while they try to restore their systems.&nbsp;<\/p>\n<p>Despite the warnings from the White House, ransomware groups have not stopped their attacks on the agriculture industry. Earlier this month, the <a href=\"https:\/\/www.zdnet.com\/article\/fbi-warns-of-ransomware-attacks-targeting-food-and-agriculture-sector-as-white-house-pushes-for-proactive-measures\/\">FBI released a notice<\/a> warning companies in the food and agriculture sector to watch out for ransomware attacks aiming to disrupt supply chains.<\/p>\n<p>&#8220;Food and agriculture businesses victimized by ransomware suffer significant financial loss resulting from ransom payments, loss of productivity, and remediation costs. Companies may also experience the loss of proprietary information and personally identifiable information and may suffer reputational damage resulting from a ransomware attack,&#8221; the FBI said.&nbsp;<\/p>\n<p>The notice goes on to list multiple attacks on the food and agriculture sector since November, including a Sodinokibi\/REvil ransomware attack on a US bakery company, the <a href=\"https:\/\/www.zdnet.com\/article\/jbs-usa-cyber-attack-affecting-north-american-and-australian-systems\/\" target=\"_blank\" rel=\"noopener\">attack on global meat processor JBS<\/a> in May, a March 2021 attack on a US beverage company and a January attack on a US farm that caused losses of approximately $9 million.&nbsp;<\/p>\n<p>JBS ended up <a href=\"https:\/\/www.zdnet.com\/article\/ransomware-meat-firm-jbs-says-it-paid-out-11m-after-attack\/\" target=\"_blank\" rel=\"noopener\">paying an $11 million ransom<\/a> to the REvil ransomware group after the attack caused meat shortages across the US, Australia and other countries. In November, the FBI also cited an attack on a US-based international food and agriculture business that was hit with a $40 million ransom demand from the OnePercent Group. The company was able to recover from backups and did not pay the ransom.<\/p>\n<p>Former CIA cyber official Marcus Fowler told <em>ZDNet <\/em>that the attack on New Cooperative is the fourth crippling and high-profile attack on US critical infrastructure in recent months.<\/p>\n<p>Fowler noted that while the Biden Administration can aspire for certain sectors to be off-limits from hackers, significant parts of the US&#8217; infrastructure and businesses are interconnected, making it nearly impossible to separate critical from non-critical industries.&nbsp;<\/p>\n<p>&#8220;What&#8217;s more, if BlackMatter truly is DarkSide 2.0, then this is evidence that the President&#8217;s talks and warnings have had little impact. Based on the details currently available, there are striking parallels between this attack and the recent campaigns against Colonial Pipeline and JBS,&#8221; said Fowler, who is now director of strategic threat at cyber firm Darktrace.<\/p>\n<p>&#8220;Just like in these instances, New Cooperative took their operational technology (OT) systems offline as a precautionary measure to an IT side attack. We still need to get better at securing OT.&#8221;<\/p>\n<p>Jake Williams CTO at BreachQuest, noted that BlackMatter appears to be a spinoff of the REvil group and has been actively recruiting for initial accesses into victim networks in recent months. But others, like Lookout senior manager Hank Schless, said BlackMatter appears to be associated with DarkSide, the group behind the attack on Colonial Pipeline.<\/p>\n<p>Other experts said ransomware groups were ignoring the warnings of law enforcement because of how lucrative and costly ransomware attacks are on companies in the agriculture industry.&nbsp;<\/p>\n<p>&#8220;Companies working in the agricultural sector are particularly susceptible to ransomware activity as the harvest and fertilization of crops is highly sensitive to external factors; this typically involves weather changes and time of the year, however any delays caused by a ransomware attack could result in a significant loss of productivity and in turn lead to huge amounts of crops being wasted,&#8221; said said Chris Morgan, senior cyber threat intelligence analyst at Digital Shadows.<\/p>\n<p>&#8220;The attack also comes at a time where COVID has resulted in a global shortages of truck drivers, which is impacting food supply chains.&#8221;<\/p>\n<p>Curtis Simpson, CISO at Armis, added that the food and agriculture industry is heavily reliant upon connected machinery to power key aspects of the business.&nbsp;<\/p>\n<p>These connected machines are growing targets for bad actors due to most companies&#8217; limited visibility into risks and threats impacting these assets, their overall level of exposure to attacks (including through the exploitation of connected machines), and the high likelihood of being paid a ransom if the attack even approaches, let alone impacts, machine-driven operations.&nbsp;<\/p>\n<p>&#8220;Much of the food and agriculture supply chain is also enabled by small operations. Some of these operations were already strained by the pandemic and any such attack could simply knock them out of business for good. Once again, as this happens, downstream operations ranging from foodservice providers to restaurants to hospitals and consumers will all have issues sourcing products,&#8221; Simpson said.&nbsp;<\/p>\n<p> READ MORE <a href=\"https:\/\/www.zdnet.com\/article\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/#ftag=RSSbaffb68\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Security researchers leaked conversations between New Cooperative negotiators and BlackMatter operators.<br \/>\nREAD MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":42949,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[62],"tags":[],"class_list":["post-42948","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-zdnet-security"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.5 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Iowa farm services provider hit with BlackMatter ransomware and $5.9 million ransom 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Iowa farm services provider hit with BlackMatter ransomware and $5.9 million ransom 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2021-09-20T19:43:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/09\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"770\" \/>\n\t<meta property=\"og:image:height\" content=\"578\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Iowa farm services provider hit with BlackMatter ransomware and $5.9 million ransom\",\"datePublished\":\"2021-09-20T19:43:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\\\/\"},\"wordCount\":1125,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/09\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom.jpg\",\"articleSection\":[\"ZDNet | Security\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\\\/\",\"name\":\"Iowa farm services provider hit with BlackMatter ransomware and $5.9 million ransom 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/09\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom.jpg\",\"datePublished\":\"2021-09-20T19:43:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/09\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/09\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom.jpg\",\"width\":770,\"height\":578},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Iowa farm services provider hit with BlackMatter ransomware and $5.9 million ransom\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Iowa farm services provider hit with BlackMatter ransomware and $5.9 million ransom 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/","og_locale":"en_US","og_type":"article","og_title":"Iowa farm services provider hit with BlackMatter ransomware and $5.9 million ransom 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2021-09-20T19:43:00+00:00","og_image":[{"width":770,"height":578,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/09\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Iowa farm services provider hit with BlackMatter ransomware and $5.9 million ransom","datePublished":"2021-09-20T19:43:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/"},"wordCount":1125,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/09\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom.jpg","articleSection":["ZDNet | Security"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/","url":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/","name":"Iowa farm services provider hit with BlackMatter ransomware and $5.9 million ransom 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/09\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom.jpg","datePublished":"2021-09-20T19:43:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/09\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/09\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom.jpg","width":770,"height":578},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/iowa-farm-services-provider-hit-with-blackmatter-ransomware-and-5-9-million-ransom\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Iowa farm services provider hit with BlackMatter ransomware and $5.9 million ransom"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/42948","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=42948"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/42948\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/42949"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=42948"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=42948"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=42948"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}