Royal Mail’s ‘cyber incident’ appears to be a ransomware attack


The British postal service has been unable to ship objects internationally since Wednesday, after an assault which seems to have used instruments from notorious Russia-linked group LockBit.

UK Daily Life 2022

British postal service Royal Mail’s ongoing cybersecurity incident is the results of an assault carried out utilizing ransomware instruments from Russia-linked hacking group LockBit, The Telegraph reports. Royal Mail disclosed the incident on Wednesday, saying that it’s unable to ship packages internationally.

A ransomware notice circulating on Twitter that was apparently despatched to Royal Mail says that its information is “stolen and encrypted,” and threatens to publish it on-line if a ransom isn’t paid. The notice namechecks “LockBit Black Ransomware,” which is regarded as LockBit’s newest encryptor. 

BleepingComputer reports that the ransom notice comprises hyperlinks to the LockBit’s information leak and negotiation Tor websites. However when contacted for remark by the publication, a spokesperson for the hacking group mentioned that it was not behind the assault, and mentioned another person is perhaps utilizing its instruments after they leaked last September. If this have been the case, BleepingComputer notes, then Royal Mail would don’t have any manner of speaking with the attacker for the reason that notice hyperlinks to LockBit’s websites.

A service update posted on Royal Mail’s website dated January thirteenth says it nonetheless can’t ship packages internationally. “Royal Mail is experiencing extreme service disruption to our worldwide export providers following a cyber incident,” it reads. “We’re quickly unable to despatch objects to abroad locations. We strongly suggest that you just quickly maintain any export mail objects whereas we work to resolve the problem.”

The Telegraph experiences that the ransomware has contaminated important Royal Mail machines used to print customs labels for worldwide shipments. The postal service, which was publicly owned prior to its privatization in 2013, is taken into account “important nationwide infrastructure,” in response to BBC News.

“Our groups are working across the clock to resolve this disruption and we are going to replace you as quickly as we’ve got extra data,” Royal Mail’s discover continues. Its investigation is being assisted by GCHQ’s National Cyber Security Centre and the Nationwide Crime Company. Royal Mail didn’t instantly reply to The Verge’s request for remark.

LockBit is a gaggle broadly believed to be based mostly in Russia, The Financial Times reports. It’s been blamed for quite a few ransomware assaults together with towards the Canadian town of St. Marys, Ontario, in addition to the car dealership Pendragon and a childrens hospital, in response to The Telegraph. The FT notes that the requested ransom for a enterprise like Royal Mail is more likely to be in extra of $1 million.


Leave a Reply

Your email address will not be published. Required fields are marked *