Boeing, the aerospace industry leader, has recently reported a cyberattack on its systems. The attack primarily targeted the company’s parts and distribution business.
While this breach has not affected flight safety, it has raised concerns about the security of the company’s supply chain and the potential for further attacks.
Boeing has yet to release any technical details about the nature of the cyber incident or the extent of the damage caused.
“We are aware of a cyber incident impacting elements of our parts and distribution business,” Boeing told The Cyber Security News.
The aviation company stated that the incident reported did not pose any threat to the safety of the flight.
Boeing is investigating the issue and working closely with relevant authorities to identify the root cause and prevent future recurrence.
Lockbit Claim
The cybercrime group Lockbit, known for its Russian affiliations, has claimed responsibility for the attack on its dark web leak site on October 27th.
Document
Webinar on Cyber Resilience for Financial Sector
Ensure your Cyber Resiliance with the recent wave of cyber-attacks targeting the financial services sector. Almost 60% respondents not confident to recover fully from a cyber attack.
VXunderground learned that Lockbit’s ransomware affiliate got access using a 0-day exploit. However, Lockbit would not elaborate further on this exploit; hence, we cannot verify the legitimacy of these claims.
Yesterday Lockbit ransomware group listed Boeing on their victims list. Boeing is a multinational American company with an estimated annual revenue of $66,610,000,000. They have over 150,000 employees worldwide. Boeing serves both the public and private sector.We spoke with… pic.twitter.com/gOiGcdWpAk
— vx-underground (@vxunderground) October 28, 2023
The recent breach has brought to light the issue of zero-day vulnerabilities, which the attackers reportedly exploited.
Zero-day vulnerabilities are unknown security flaws that pose a significant challenge for organizations regarding protection.
The attackers were able to leverage these vulnerabilities, making it clear that organizations must be more proactive in identifying and addressing such vulnerabilities to safeguard their critical assets.
According to the malware repository vx-underground, Later, the Boeing listing was removed from the Lockbit ransomware group’s website as they started their negotiations.
We keep getting pinged. Yes, Boeing has been removed from Lockbit ransomware groups website.Lockbit administrative staff informed us they removed Boeing because negotiations have begun.We don't know anything else. It is Halloween. Cya nerds tomorrow. We're busy.
— vx-underground (@vxunderground) November 1, 2023
Boeing Parts Website is offline at the time of writing with the note, “we are aware of the technical issues impacting the availability of the services websie. This incident does not affect the safety of flight.”
Update 2/11/2023: LockBit has added Boeing back to their victim list and threatens to release a sample of data in less than 15 minutes. After an hour, the listing has been removed.
This story is still unfolding, so please stay tuned for further updates.
