February 13, 2024 at 09:57AM
Aircraft parts dealer Willis Lease Finance Corporation (WLFC) reported a cyberattack to the US Securities and Exchange Commission, detected on January 31. The company contained the incident by February 2 and is investigating the scope and impact of the attack. The Black Basta ransomware gang claims responsibility and threatens to release over 900 GB of data publicly.
Key Takeaways from the Meeting Notes:
– Willis Lease Finance Corporation (WLFC) reported falling victim to a cyberattack, which was discovered on January 31, with unauthorized activity detected on its systems.
– The company launched an investigation with the assistance of third-party cybersecurity experts and took steps to contain and remediate the incident, including taking certain systems offline. The incident was fully contained by February 2, with no further unauthorized activity detected.
– The nature and scope of the attack are still being determined, with WLFC stating that it is unsure what data has been impacted or exfiltrated.
– The Black Basta ransomware gang has claimed responsibility for the attack and has threatened to release over 900 GB of exfiltrated data publicly within six days.
– Black Basta has been active since at least April 2022 and has been responsible for over 300 infections, with ransom demands estimated in the range of $100 million as of November 2023.
Related: The meeting notes also reference related articles regarding ransomware attacks, including one that knocked 100 Romanian hospitals offline, and the US offering a $10 million reward for the Hive ransomware gang. Additionally, ransomware payments surpassed $1 billion in 2023.
Please let me know if you need further assistance or additional details.