Royal Mail CEO Simon Thompson has confirmed that a cyberattack is to blame for the ongoing disruption at the U.K. postal giant.
The admission comes almost a week after Royal Mail first said it was hit by an unspecified “cyber incident” that left the British mail service unable to dispatch items to overseas destinations.
“We’ve confirmed that we’ve had a cyberattack,” Thompson told a U.K. parliamentary committee on Tuesday in response to questions from lawmakers. Thompson added that while the mail service believes that no customer data was compromised in the attack, the organization is prepared for that situation to change and has already notified the U.K. data protection regulator, the Information Commissioner’s Office, as a precaution.
Thompson — who gave evidence to lawmakers during a session about Royal Mail’s ongoing dispute with its union workers — declined to comment on specifics of the cyberattack, claiming that discussing details of the incident would be “detrimental” to the ongoing investigation. Thompson said that the postal service continues to experience disruption to its international export services following the cyberattack.
Royal Mail has yet to confirm when this disruption is likely to end — compounded by existing backlogs and delays that have arisen from strike action — but Thompson said a “workaround” should be available soon.
“For export parcels and letters through our postal services… we are no longer able to provide that service,” he said. “The team have been working on workarounds so that we can get the service up and running again.” Thompson added that the Royal Mail will have “more news to share” soon.
There remains plenty of unanswered questions about the Royal Mail’s cyberattack, such as the nature of the incident and who is responsible.
Some media reports have claimed that Royal Mail was the target of ransomware that compromised machines used to print customs labels for parcels sent to overseas destinations. A public-facing representative for LockBit, a ransomware group accused of launching the attack on the postal service, initially denied involvement, and pointed blame to other hackers using the gang’s leaked ransomware builder software. Brett Callow, a ransomware expert and threat analyst at Emsisoft, shared a post from the LockBit representative seemingly admitting that LockBit affiliates were responsible for the attack.
TechCrunch has yet to verify LockBit’s involvement, and Royal Mail has not been listed on the gang’s dark web leak site. When reached by email, Royal Mail spokesperson Mark Street declined to comment.
Twitter’s direct messages have always been a security liability. The DMs you send to friends and internet strangers aren’t end-to-end encrypted, making your conversations potentially accessible if Twitter suffers a data breach, or to company staffers with the right permissions to access them. Both scenarios are arguably more likely in Elon Musk’s version of Twitter, where key security and […]
The Housing Authority of the City of Los Angeles, or HACLA, has confirmed it is investigating a cybersecurity incident shortly after the LockBit ransomware gang claimed responsibility for a cyberattack on the agency. HACLA, which provides affordable housing to more than 19,000 low-income families across Los Angeles, was added to LockBit’s dark web leak site on […]
Microsoft says a vulnerability it discovered in a core macOS security feature, Gatekeeper, could have allowed attackers to compromise vulnerable Macs with malware. The flaw, tracked as CVE-2022-42821, was first uncovered by Microsoft principal security researcher Jonathan Bar Or, and dubbed the “Achilles” vulnerability. Bar Or said the bug could allow malware to skirt Gatekeeper’s protections […]
Leave a Reply