Aircraft parts dealer Willis Lease Finance Corporation (WLFC) has reported to the US Securities and Exchange Commission about a cyberattack it experienced. The incident was discovered on January 31, following the detection of unauthorized activity within its systems. WLFC swiftly initiated an investigation with the help of third-party cybersecurity experts and took immediate steps to contain and address the breach, including shutting down certain systems.
By February 2, WLFC confirmed that the cyberattack had been fully contained, and no further unauthorized activity was detected. However, the investigation is ongoing to ascertain the extent of the breach, including identifying any data that may have been exfiltrated or impacted. WLFC, a provider of aircraft and engine services worldwide, acknowledged the severity of the incident and emphasized its commitment to determining the full scope and impact of the attack.
While WLFC did not specify the nature of the cyberattack, the Black Basta ransomware group has claimed responsibility and threatened to leak over 900 GB of sensitive company data. This includes employee and customer information, shared folders, and confidential documents. The company faces the challenge of mitigating the potential fallout from the breach and safeguarding the confidentiality of its data amidst the threat of public exposure by the cybercriminal group.
Reference:
