Boeing, a prominent figure in defense and space contracting, publicly acknowledges an ongoing investigation into a cyber incident affecting its parts and distribution business.
Lockbit Ransom Threat and Deadline (November 2):
The revelation comes in the wake of a ransom threat from the Lockbit cybercrime group, claiming access to sensitive data. The group sets a deadline for a ransom payment by November 2, with confirmation of compliance yet to be established.
As of Wednesday, the Lockbit threat has disappeared from the group’s website, with no immediate response to inquiries. Boeing, however, has not explicitly confirmed Lockbit’s responsibility for the disclosed cyber incident.
Boeing’s Reassurance on Flight Safety:
:quality(85)/cloudfront-us-east-1.images.arcpublishing.com/infobae/OJFGSWREJIPJIX7FQ3DHLF3ZRI.jpg)
Boeing spokesperson reassures the public that the cybersecurity issue does not compromise flight safety. The company is actively engaged in an investigation, collaborating with law enforcement and regulatory bodies, and keeping customers and suppliers informed.
The affected business segment, part of Boeing’s Global Services division, manages material and logistics support for clients. Notably, specific pages related to the Global Services division on Boeing’s official website were temporarily inaccessible on Wednesday, citing technical issues.
Lockbit’s Notorious History and Tactics:
Lockbit, recognized as the most active global ransomware group by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) last year, has targeted around 1,700 U.S. organizations since 2020. The group deploys ransomware to encrypt victim systems while exfiltrating sensitive data for extortion.
The extent of data stolen from Boeing remains uncertain. Despite potential ransom payments by organizations to cybercriminal groups, there is no guarantee of data destruction, emphasizing the challenge of verifying data disposal even after a ransom is paid, as noted by cybersecurity expert Brett Callow.
Boeing refrains from commenting on the impact of the cyber incident on defense-related data. The potential loss of such information poses significant challenges. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is yet to respond to requests for comments on Boeing’s statement.
Read More (News)
