Menu
On Friday 30th of December 2022, U.S. rail and locomotive company, Wabtec Corporation disclosed a data breach that exposed personal and sensitive information. The announcement revealed that the threat actors were able to breach their network and installed malware on specific systems as early as Tuesday 15th of March 2022.
The announcement explained that on Sunday 26th of June 2022, Wabtec detected unusual activity on their network leading to an investigation of the attack and whether the hackers had stolen data. Then on Friday 19th of August 2022, the LockBit ransomware gang claimed responsibility for the cyber attack and published samples of data stolen from Wabtec before eventually leaking all stolen data on Saturday 20th of August 2022, presumably after a ransom was not paid. The announcement also revealed that after the investigation was concluded, it was confirmed that LockBit had stolen files containing sensitive personal information.
NCSC Threat Reports Feed© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.
