November 10, 2023 at 03:28PM
LockBit, a ransomware gang, claims to have leaked all the data stolen from Boeing after the company refused to pay the ransom demand. The leaked data includes 50GB of compressed archives and backup files, as well as company finances, marketing activities, and supplier details. Boeing has not confirmed the entry point of the attack. The data dump also reportedly contained corporate emails. This comes after the recent ransomware attack on China’s largest bank, ICBC, which LockBit also claimed responsibility for.
During the meeting, it was discussed that LockBit, a hacking group, claims to have leaked all the data stolen from Boeing after the company refused to pay the ransom demand. The leaked data includes approximately 50GB of compressed archives and backup files for various systems. The gang also uploaded files related to company finances, marketing activities, and supplier details. Some Citrix logs were found among the stolen information, suggesting that LockBit may have exploited Citrix Bleed to gain access to Boeing’s systems. Boeing has not commented on the initial entry point into its systems. The authenticity of the data dumps has not been verified, and Boeing has declined to provide specific information about the incident. According to security researcher Dominic Alvieri, the leaked files also contain corporate emails. It was mentioned that LockBit initially listed Boeing on its dark-web site on October 28, and Boeing confirmed an IT intrusion on November 2. The break-in reportedly affected the manufacturer’s parts and distribution business. Negotiations between LockBit and Boeing seem to have failed, and now Boeing is back on the LockBit extortion website. Additionally, this week, the Industrial and Commercial Bank of China (ICBC) was hit by a ransomware attack, and LockBit has claimed responsibility for it as well.