In a recent turn of events, Boeing, a leading aerospace company, has found itself grappling with the repercussions of a cyberattack. This incident came to light earlier this month when the ransomware group LockBit claimed responsibility for the attack and proceeded to leak data they allege to have stolen from Boeing. The leaked data, as reported by Bleeping Computer, is substantial, amounting to over 43GB of backup files.
The aftermath of this cyber breach was evident on Boeing’s services website, which, as of Monday afternoon, was still non-operational. A message on the site confirmed the cyber incident, specifically mentioning its impact on the parts and distribution aspect of Boeing’s business. However, the company was quick to assure that the safety of its aircraft was not compromised. A spokesperson from Boeing, in a statement to Engadget, acknowledged the release of information by the cybercriminals and emphasized their ongoing investigations in collaboration with law enforcement and regulatory bodies.
The encounter with LockBit began on October 27, when the group publicly named Boeing as a target on its website. They set a deadline of November 2 for Boeing to respond to their demands. Interestingly, there was a brief period when Boeing’s name was removed from LockBit’s list of victims on their site. However, on November 7, the group resurfaced, accusing Boeing of ignoring their negotiation attempts. LockBit initially threatened to release a 4GB sample of the stolen data but later decided to publish all the data on November 10.
The information released by LockBit is reported to include critical configuration data for IT management software, as well as auditing and monitoring logs. There is also some Citrix-related information which is believed to be linked to a previous exploit.
Since its emergence in the cybercrime world in January 2020, LockBit has established itself as a formidable and notorious ransomware gang. Originating from Russian cybercrime forums, the group has been linked to approximately 1,700 attacks in the US alone. These attacks have led to companies paying a staggering total of about $91 million in ransoms. The list of LockBit’s victims is diverse and includes major entities such as the Chinese bank ICBC, the semiconductor powerhouse Taiwan Semiconductor Manufacturing Company, and Canadian retailer Indigo Books and Music.
This latest incident with Boeing underscores the growing threat posed by cybercriminal groups like LockBit. It highlights the increasing vulnerability of major corporations to sophisticated cyberattacks and the extensive implications these attacks can have on business operations. As cyber threats evolve, it becomes imperative for companies to bolster their digital defenses and prepare for potential cyber incidents that could disrupt their operations and compromise sensitive data.