Estes Express Lines, a prominent freight shipping entity, has recently encountered a significant cybersecurity incident, revealing a breach that exposed personal data of more than 21,000 individuals. The attack, orchestrated by the LockBit ransomware gang, infiltrated the company’s network on September 26, 2023, and was identified on October 1, 2023.
Upon detection, Estes swiftly engaged in a comprehensive forensic investigation, which concluded on November 7, 2023. The attackers, during their unauthorized presence in the network, extracted sensitive information, including names, personal identifiers, and Social Security numbers. While the company has assured affected individuals that there have been no reported cases of identity theft, fraud, or financial losses stemming from the incident, the severity of the breach is undeniable. Notification letters to the affected parties were initiated in December, following the conclusion of law enforcement investigations.
Estes, committed to transparency, outlined the actions taken to mitigate the incident, including cooperation with the FBI, successfully barring the threat actor from the system, and implementing robust cybersecurity measures. Notably, Estes did not succumb to ransom demands, and details regarding the restoration efforts remain undisclosed. Despite the company’s proactive response, the LockBit ransomware gang claimed responsibility for the attack in early November, further escalating concerns.
On November 13, the group went public with data allegedly stolen from Estes, underscoring the urgency of cybersecurity measures for organizations in the digital age. In an effort to ameliorate the impact on affected individuals, Estes has taken a commendable step by offering free identity monitoring services for 12 months. This proactive measure aligns with the company’s commitment to mitigating potential consequences for those impacted by the breach.