Aircraft Leasing Company Acknowledges Cyberattack in SEC Filing
Black Basta ransomware claimed responsibility, but the company says its investigation is ongoing.
Commercial aircraft engine leasing concern Willis Lease Finance Corp. said a "cybersecurity incident" it suffered from Jan. 31 knocked its systems offline in a filing with the Securities and Exchange Commission.
The filing notes that unauthorized activity was discovered on the company's IT systems, which led to the launch of an investigation to assess the scope and nature of the cyber incident.
This investigation remains ongoing and is being conducted alongside third-party cybersecurity experts; Willis has not identified who was behind the unauthorized activity at the time of its Feb. 9 filing.
But in early January, the Black Basta ransomware group allegedly claimed to have stolen data from the business and posted it on the group's leak blog.
The Black Basta group claims that it stole 910GB of company data related to the aviation company's customers, staff, and HR department, among other data types, and posted samples of documents online.
Willis said in its filing that it "is working diligently to respond to and address the issues posed by the incident," but it provided no further details and didn't say if any data has been compromised.
About the Author(s)
You May Also Like
Beyond Spam Filters and Firewalls: Preventing Business Email Compromises in the Modern Enterprise
April 30, 2024Key Findings from the State of AppSec Report 2024
May 7, 2024Is AI Identifying Threats to Your Network?
May 14, 2024Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy
May 15, 2024Safeguarding Political Campaigns: Defending Against Mass Phishing Attacks
May 16, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024