Boeing is responding to a Russia-affiliated group’s claimed ransomware attack against the multinational aerospace company, raising concerns about a potential compromise of highly sensitive data.
LockBit, a prolific ransomware group, claimed responsibility for an attack in a Friday post on its leak site that was shared by threat analysts on X, the site formerly known as Twitter.
The group claimed “a tremendous amount of sensitive data was exfiltrated and ready to be published,” in the post and set a Nov. 2 deadline for Boeing to make contact.
The aerospace and defense company did not confirm the attack.
“We are assessing this claim,” a Boeing spokesperson said via email. The FBI and Cybersecurity and Infrastructure Security Agency also did not respond to inquiries.
Last year, the Justice Department described LockBit as “one of the most active and destructive ransomware variants in the world.”
The group has attacked more than 1,700 victim organizations in the U.S. and made at least $91 million in ransom demands since it first appeared in January 2020, CISA said in a June advisory.
“In 2022, LockBit was the most active global ransomware group and ransomware as a service provider in terms of the number of victims claimed on their data leak site,” CISA said in the advisory.