LockBit, a notorious ransomware gang, has targeted Boeing, one of the world’s largest aerospace companies, in a recent cyberattack. The hackers have published a significant amount of stolen data after Boeing refused to pay the ransom demands. This incident has raised concerns about the company’s cybersecurity measures and the potential vulnerabilities in its systems.
The leaked data, consisting of over 43GB of files, includes backups for various systems, with the most recent timestamp being October 22. Among the files are configuration backups for IT management software, logs for monitoring and auditing tools, and even backups from Citrix appliances. This has sparked speculation that the LockBit ransomware gang may have exploited the recently disclosed Citrix Bleed vulnerability (CVE-2023-4966), which allows unauthorized access to systems.
Boeing initially disappeared from LockBit’s list of victims but was added again after the hackers claimed that their warnings had been ignored. Despite the threats, Boeing remained silent, prompting the ransomware gang to release a portion of the stolen data as a bargaining chip. Now, with the release of all the data on November 10, it is clear that the hackers are determined to expose Boeing’s sensitive information.
The cyberattack on Boeing highlights the persistent threat posed by the LockBit ransomware gang, which has been actively targeting organizations across various sectors for more than four years. The group has extorted approximately $91 million since 2020, with nearly 1,700 attacks reported in the United States alone. Their operations are not limited to a single country, as they have been involved in international campaigns, as demonstrated by the phishing campaign in Spain that targeted architecture firms.
Boeing has confirmed the cyberattack but has not provided specific details about the incident or how the hackers breached their network. This lack of transparency raises concerns about the company’s ability to detect and respond to cyber threats effectively.
Overall, the Boeing cyberattack serves as a reminder of the ever-growing threat landscape and the pressing need for organizations to prioritize robust cybersecurity measures. As cybercriminals continue to evolve their tactics, businesses must remain vigilant and proactive in safeguarding their sensitive data and systems.
FAQ
Q: What is LockBit ransomware?
LockBit is a ransomware-as-a-service (RaaS) operation known for its resilience and extensive history of targeting organizations across various sectors. The gang has been active for over four years and has made thousands of victims worldwide.
Q: How much money has LockBit extorted?
LockBit has extorted approximately $91 million since 2020 through close to 1,700 attacks on various organizations in the United States. The actual amount extorted globally may be even higher.
Q: How long has Boeing been a victim of the LockBit ransomware gang?
Boeing’s involvement with the LockBit ransomware gang began recently, with the cyberattack resulting in the theft and subsequent publication of a significant amount of sensitive data.
[Original Source: BleepingComputer, FalconFeed]