Jet maker Bombardier suffered a data breach by the Clop ransomware gang after exploiting Accellion FTA vulnerabilities to steal company data.
Jet maker Bombardier suffered a data breach by the Clop ransomware gang after exploiting Accellion FTA vulnerabilities to steal company data.
Bombardier is a Canadian manufacturer of the business jet with around 16,000 employees and generated $6.5 billion in revenue for 2020.
The Clop ransomware gang posted files stolen from Bombardier on their data leak site. The data includes design aeroplane and parts schematics and flight test reports.
“Bombardier announced today that it recently suffered a limited cybersecurity breach.” reads a statement published by the company.
“An initial investigation revealed that an unauthorized party accessed and extracted data by exploiting a vulnerability affecting a third-party file-transfer application, which was running on purpose-built servers isolated from the main Bombardier IT network.”
BleepingComputer reported that the file transfer application they related is Accellion FTA. Since December 2020, this secure file sharing application has been involved in a series of data breaches.
The attackers stole the personal and confidential data relating to employees, customers and suppliers. Around 130 employees located in Costa Rica were impacted.
The firm is contacting customers and other external stakeholders whose data was potentially compromised. The investigation specifies that the unauthorized access was limited to information stored on the specific servers.
Bombardier reported that the attack had not impacted manufacturing and customer support operations.
The company informed appropriate authorities and hired cybersecurity and forensic professionals to investigate the incident.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?