LockBit Gang Disclose Bangkok Airway Information, Hits Accenture Customers

LockBit Gang Disclose Bangkok Airway Information, Hits Accenture Customers

Bangkok Airways, a major airline company in Thailand, confirmed it was the victim of the Cyberattack previous this month that negotiated personal information of users. The broadcast arrives after the LockBit ransomware group had published a message on their leak site claiming the hijack and threatening to post hijacked information unless the ransom was paid.

LockBit is the only hacker gang that hijacked Accenture global IT consultancy enormous and demanded a $50 million payment to stop the leak of allegedly 6TB of hijacked information.

Pursing the attack, the cybercriminal said that they had collected all the sufficient information to hijack some of Accenture’s users.

How the Information of the Passenger was hijacked?

On Saturday, LockBit ransomware leaked more than 200GB of information belonging to the Thai company, suggesting that the security of its system was in disparity with the airline’s claims to secure the customer’s privacy.

LockBit-Gang-Disclose-Bangkok-Airway-Information-Hits-Accenture-Customers-image1

The airline discovered the attack on August 23 and took steps to contain the incident. The research was also initiated, to check what information had been negotiated. While the attack did not harm Bangkok Airways’ operational or aeronautical security systems, the airline said that the attacker may have accessed personal information relating to users.

The information revealed during the attack includes full names, nationality, email, and physical addresses, phone numbers, historical travel data, half-credit card information, and special meal information.

Bangkok Airways alerts its users that the threat actors may try to act like a company representative in uninvited calls or emails to gather more personal information or credit card data.

Accenture User is on Target!

The LockBit ransomware gang encode the systems of another airline organization, Ethiopian, and revealed on August 23 the posting of hijack data, before it hit Bangkok Airways.   

LockBit-Gang-Disclose-Bangkok-Airway-Information-Hits-Accenture-Customers-image2

Both of the above attacks took place after the attackers negotiated the systems of Accenture, purportedly with the help of an insider. In a conversation with our experts, the attackers stated that the Accenture hijack gave them access to passwords that would allow them to go after company customers.

Even though the threat actors denied naming a victim, they declare to have negotiated an airport that was using Accenture software and encode its systems. LockBit ransomware-as-a-service (RaaS) operation has been around since September 2019 but version 2.0 of the trojan has emerged earlier this year, in June.

The latest update of the malware has been used in at least 70 attacks against companies all over the world, a clear sign of this RaaS operation’s increased activity.

Leave a Reply