Monday, May 13, 2024

Vogon Today

Selected News from the Galaxy

StartMag

British Airways, Boots and BBC under hacker attack, all damages

11 months ago babelfish

British Airways, Boots and BBC under hacker attack, all damages

A gang of cybercriminals has attacked the British giants British Airways, the BBC and Boots: tens of thousands of workers affected by the breach of sensitive data

British Airways, Boots and the BBC under hacker attack: tens of thousands of employees' personal data violated.

"A cybercriminal gang thought to be based in Russia has issued an ultimatum to victims of a hack that has affected organizations around the world," reportsCNN .

Airlines British Airways, pharmacy chain Boots and the BBC broadcaster have warned their employees that they have fallen victim to an attack affecting MOVEit, the software used by Zellis, the UK's leading payroll provider United.

More than 100,000 employees at the BBC, British Airways and Boots have been told payroll data may have been leaked.

The Clop group is believed to be behind the attack, posting a notice on the dark web warning companies affected by the MOVEit hack to send an email before June 14 or the stolen data will be published. However, for now, a source close to Zellis and quoted by the Financial Times said no group has claimed responsibility for the cyber attack.

As the Financial Times points out, security experts have said cybercriminals launch so-called "hack and leak" attacks by threatening to release sensitive information unless companies pay substantial sums.

All the details.

THE HACKER ATTACK

British Airways which employs around 35,000 people, Boots which employs more than 50,000 and the BBC the national broadcaster with around 20,000 employees, have told thousands of employees that personal information may have been compromised in a cyber attack on their envelope supplier pay, Zellis.

The potential violation affected the names, dates of birth and social security numbers of employees.

WHAT IS MOVEIT

At the heart of the hack is MOVEit is enterprise software owned by US-based Progress Software. It helps businesses share files via their intranets.

UK-based payroll service provider Zellis is a MOVEit user. Without revealing names, Zellis acknowledged that the criminals had accessed details of eight of these organizations. MOVEit also ran Microsoft's Windows server applications that had a security flaw that Clop exploited to hack Zellis.

PROBABLE CYBER GANG CLOP BEHIND THE THEFT

“This is an announcement to educate companies using the Progress MOVEit product… If we don't hear from you until June 14, 2023, we will publish your name on this page…”, this is the content of Clop's message published on the dark web, according to The Telegraph .

Clop has been active since February 2019 and operates as a “ransomware-as-a-service” group. Dark web actors hire its services or use its software to carry out attacks.

The Clop group is the successor to the CryptoMix ransomware, which was also developed in Russia, Quartz points out.

BRITISH AIRWAYS DATA BREACHED AGAIN

Finally, the data theft adds to a number of technological problems plaguing British Airways. The UK's flag carrier was fined £20m in 2020 for leaking customer data, and has now said it will "provide support and advice" to affected staff.

Last month, a computer outage forced the British carrier to cancel hundreds of flights. Group chief executive Luis Gallego said on Monday that the technical problems are fixable "but it will take time".

This is a machine translation from Italian language of a post published on Start Magazine at the URL https://www.startmag.it/cybersecurity/british-airways-boots-e-bbc-sotto-attacco-hacker-tutti-i-danni/ on Thu, 08 Jun 2023 14:02:29 +0000.