Lockbit gang hacked Boeing, published data
Learn More
The LockBit 3.0 ransomware gang, claims to have hacked Boeing and have extracted a significant amount of data. They announced the supposed breach on their darknet leak site on October 27, they set a deadline of November 2 for the data's release.
Instead of their usual practice of sharing some data as evidence of the hack, LockBit has only indicated the scale of the breach.
"“A tremendous amount of sensitive data was exfiltrated and ready to be published if Boeing do not contact within the deadline!” is stated by LockBit
They've warned the data will be released for download if Boeing does not engage with them by the deadline. Since there is no evidence of the breach provided, there is doubt whether the hack actually happened and it's magnitude.
In the interim period LockBit's leak site is difficult to access, possibly due to high traffic or a DDoS attack, but security researchers have verified the post's existence.
Boeing has acknowledged the potential breach and is determining its next steps. No other details are disclosed.
Update - Based on the information available, Boeing has confirmed the attack. The probable cause of the incident was via a zero-day vulnerability. The vulnerability is not disclosed.
As of 13th November, the operators of the LockBit ransomware have published 43GB of Boeing data after failing to negotiate ransom terms with the company.
