November 12, 2023 at 06:56PM
LockBit ransomware has leaked more than 43GB of files stolen from Boeing after the aerospace company refused to pay the ransom. The leaked data includes backups for various systems, with the most recent files dated October 22. LockBit had warned Boeing about the leak and threatened to publish a sample of the data, but the company did not respond. The ransomware gang eventually released all the data on their site, including configuration backups and logs. Boeing confirmed the cyberattack but did not provide further details. LockBit is a resilient ransomware operation that has targeted numerous organizations worldwide.
Summary of Meeting Notes:
– The LockBit ransomware gang has published data stolen from Boeing, a major aerospace company that services commercial airplanes and defense systems.
– Prior to the leak, the hackers warned Boeing that the data would be made public and threatened to release a sample of 4GB of the most recent files.
– LockBit ransomware leaked over 43GB of files from Boeing after the company refused to pay the ransom.
– The leaked data consists mostly of backups for various systems, with the most recent backups dated October 22.
– On October 27, the hackers posted Boeing on their leak site and set a November 2 deadline for the company to engage in negotiations.
– Despite warnings, Boeing remained silent, leading the hackers to threaten to publish 4GB of sample data and the databases if the company did not cooperate.
– On November 10, LockBit released all the data they had from Boeing, including configuration backups for IT management software and logs for monitoring and auditing tools.
– There is speculation that LockBit ransomware may have used the recently disclosed Citrix Bleed vulnerability.
– Boeing confirmed the cyberattack but did not provide any further details about the incident or how the hackers breached their network.
– LockBit is a resilient ransomware-as-a-service operation that has been active for over four years and has targeted numerous organizations globally.
– The U.S. government reported that the gang extorted approximately $91 million since 2020 through attacks on organizations in the country.
– The gang operates internationally and has been involved in phishing campaigns targeting architecture firms, as warned by the Spanish National Police in August.