Scotland’s Arran Brewery lost three months’ worth of sales data after the attack. The brewery was hit by the Dharma Bip ransomware variant, which crypto-locked the files on all affected systems, adding a “.bip” extension. The attack was especially damaging because it first infected the office’s Windows domain controller, which is used to authenticate corporate users and provide them with access to resources. Brewery doesn’t know for certain how attackers gained access to its domain controller but strongly suspects that it fell victim to a phishing attack.”]
Source: https://www.govinfosecurity.com/scotlands-arran-brewery-slammed-by-dharma-bip-ransomware-a-11537