The LockBit ransomware gang was behind the "cyber incident" at U.K.-based postal service company Royal Mail, which disrupted overseas but not domestic letter and parcel deliveries, reports The Guardian.
Royal Mail was reportedly threatened by LockBit that information stolen from the company would be leaked online unless the postal service firm pays the demanded ransom. While Royal Mail has already informed the National Cyber Security Centre, the National Crime Agency, and the Information Commissioners Office regarding the incident, no other details have been revealed.
Russians and others from former Soviet Republics are believed to mostly comprise the LockBit ransomware operation, which has also been offering software access to affiliates in exchange for a ransom cut, according to Sophos Principal Researcher Andrew Brandt. LockBit has been demanding ransoms ranging from $200,000 to nearly $1.5 million.
"Something Royal Mail is going to have to consider is whether or not they are going to pay a ransom. Im a bit of a purist and [say] they should never pay these people anything," Brandt added.
The Philippine Health Insurance Corporation, which manages the country's universal healthcare system, had its websites and portals disrupted by a Medusa ransomware attack last week, from which it is struggling to recover, reports The Record, a news site by cybersecurity firm Recorded Future.
Japanese multinational conglomerate Sony has begun an investigation into an alleged cyberattack, which was reported to have resulted in the exposure of 3.14 GB of data in hacking forums, amid the emergence of different attackers claiming to be behind the hack, according to BleepingComputer.
Threat actors have leveraged the ZeroFont phishing attack technique, which initially involved the insertion of hidden characters or words in emails to evade security detection systems, to modify message previews as shown on Microsoft Outlook and other email clients, BleepingComputer reports.