LockBit gang claims responsibility for Xeinadin breach

The LockBit ransomware group has taken responsibility for infiltrating the systems of Xeinadin, a prominent accountancy firm, and is threatening to release what they claim to be stolen data. Xeinadin Group is a consolidated group of over 100 independent accountancy and advisory firms across the UK and Ireland and is among the top 20 accountancy firms in the country.

On its dark web leak site, the LockBit group listed Xeinadin as one of its recent victims. The group alleges that it has exfiltrated 1.5 terabytes of data belonging to Xeinadin's customers. This potentially compromised data includes sensitive legal, tax, financial, and other private information.

The gang is threatening to publicly release this data unless Xeinadin reaches out to them by the deadline of December 25, 2023. The group's message on its Tor leak site urges Xeinadin's management to acknowledge the severity of the situation and negotiate to prevent a massive data leak. They warn that if there's no communication from the management within 72 hours, they will start publishing the confidential information of numerous companies from England and Ireland.

To substantiate their claims, the LockBit group has released three screenshots. These images display a database schema and the structure of the compromised storage infrastructure, offering a glimpse into the extent of the breach.