The Clop ransomware gang claims to have stolen documents from aerospace giant Bombardier’s defense division – and has leaked what appears to be a CAD drawing of one of its military aircraft products, raising fears over what else they’ve got.
Over on their Tor hidden service, the cyber-extortionists published what they said were screenshots of blueprints swiped from Bombardier as evidence of their crimes. The gang abused the same vulnerability in file-transfer software from Accellion that was exploited earlier this year to nab documents from Trump's lawyers.
Bombardier confirmed its security had been breached, putting out a public statement only minutes after The Register grilled the Canadian business jet maker on the Clop gang's claims. “An initial investigation revealed that an unauthorized party accessed and extracted data by exploiting a vulnerability affecting a third-party file-transfer application, which was running on purpose-built servers isolated from the main Bombardier IT network,” the biz said.
Bombardier added it is working with “cybersecurity and forensic professionals,” and insisted it “was not specifically targeted — the vulnerability impacted multiple organizations using the application.” A spokeswoman confirmed the breach came about thanks to a hole in an Accellion file-transfer product.
Thus, Bombardier was among various corporations using Accellion's vulnerable file-transfer software, which were exploited to pilfer documents. A flaw in the application was revealed in December, and it appears criminals were quick to make hay before the world got round to patching their deployments.
Around 130 Bombardier employees in Costa Rica were “impacted” by the hack, we're told, suggesting their p ..
Support the originator by clicking the read the rest link below.
