Boeing Breached by Ransomware, LockBit Gang ClaimsBoeing Breached by Ransomware, LockBit Gang Claims
LockBit gives Boeing a Nov. 2 deadline to pay the ransom or have its sensitive documents leaked to the public, but it hasn't given evidence of the compromise.
October 30, 2023
In a post on its leak site, prolific ransomware threat group LockBit claims that it breached Boeing, and said that it will start releasing sensitive data it purportedly stole from the company's systems if ransom demands aren't met by Nov. 2.
"A tremendous amount of sensitive data was exfiltrated and ready to be published if Boeing do (sic) not contact within deadline!" the LockBit post shared by cybersecurity analyst Dominic Alvieri read. "For now we will not send lists or samples to protect the company BUT we will not keep it like that until the deadline."
The post included a countdown clock to the deadline.
A Boeing spokesperson told Dark Reading, "We are assessing this claim."
LockBit boasted it accessed Boeing's systems with a zero-day vulnerability.
If this turns out to be true, James Dyer, threat intelligence lead at Egress, predicts a long recovery road ahead for the sprawling multinational aviation and aerospace organization.
"This incident is not only worrying because of its immediate threat but also in terms of the fallout," Dyer said in a statement. "Ultimately, the company and customers could now be at greater risk from increased phishing attacks using credentials compromised in the other initial attack — otherwise known as business email compromise (BEC)."
LockBit has been the most active ransomware threat group over the past year, according to Black Kite's head of research, Ferhat Dikbiyik, but he added in a statement that the group doesn't traditionally target organizations as large as Boeing.
"LockBit appears to be proceeding cautiously by not immediately publishing any sample data," he noted.
This seems to be a departure from previous operations. Last August, LockBit breached a UK defense contractor, Zaun Ltd., and leaked sensitive data on the physical security surrounding several agencies in the UK Ministry of Defence.
About the Author(s)
You May Also Like
Hacking Your Digital Identity: How Cybercriminals Can and Will Get Around Your Authentication MethodsOct 26, 2023
Modern Supply Chain Security: Integrated, Interconnected, and Context-DrivenNov 06, 2023
How to Combat the Latest Cloud Security ThreatsNov 06, 2023
Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and PhishingNov 01, 2023
SecOps & DevSecOps in the CloudNov 06, 2023
Passwords Are Passe: Next Gen Authentication Addresses Today's Threats
How to Deploy Zero Trust for Remote Workforce Security
How to Use Threat Intelligence to Mitigate Third-Party Risk
Concerns Mount Over Ransomware, Zero-Day Bugs, and AI-Enabled Malware
Securing the Remote Worker: How to Mitigate Off-Site Cyberattacks