Guardian Threat Actor Confirmed to Have Stole UK Staff Member’s Personal Data ransomware attack It impacted systems on December 20, 2022.
the update is Guardian With Anna Bateson, Chief Executive Officer of the Media Group, Guardian‘s editor-in-chief, Catherine Viner, sent an email to staff on Wednesday.
Management described the incident as a “highly sophisticated cyberattack involving unauthorized third-party access to parts of the network,” likely due to a successful phishing attempt. They also said the attack was not aimed directly at them. guardian.
“While these types of incidents are often described as ‘sophisticated’, they are actually fairly common and easy to execute. Ransomware attacks that enter networks via simple phishing attempts are , is an old story,” commented Dominic Trott.Strategy Officer of orange cyber defense.
“I think the days of calling ‘spray and play’ phishing a sophisticated attack are over. […] So this incident should serve as a reminder of the reality that it doesn’t take long to break into a large organization, and even the simplest techniques used by cybercriminals should not forget training and awareness. Hmm. “
At the same time, Bateson and Viner clarified that the publication had no reason to believe the personal data of its readers and subscribers; and guardian usa When Guardian Australia Staff have access.
As for the stolen UK staff data, Guardian Management said it believes the risk of fraud is low because it found no evidence that the data was published online.
Still, security awareness advocate Erich Kron said: KnowBe4the attack should serve as a lesson that anyone, regardless of industry, can be a target for ransomware.
“To prepare for ransomware, organizations should ensure proper, tested offline backups and educate staff on how to identify and report phishing emails,” said Kron. Information security.
“Additionally, data loss prevention (DLP) controls are important because malicious actors often use threats to steal and expose data to blackmail victims.”
Guardian Some critical systems are expected to be back up and running “within the next two weeks,” but it added that it confirmed that the return to work at the office would be delayed until early February. Bateson’s analysis last week.
