Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Incidents

Royal Mail Investigates Supplier Data Breach

April 3, 2025
Reading Time: 2 mins read
in Incidents
Polish Civic Platform Hit by Cyberattack

Royal Mail is investigating a data breach involving a third-party supplier, Spectos, which has exposed sensitive information. The breach was allegedly revealed by a cybercriminal named “GHNA” on the BreachForum, where 144GB of data was published. This data included personally identifiable information (PII) of Royal Mail customers, delivery information, and internal company documents, such as Zoom recordings between Royal Mail and Spectos. The attack appears to have used credentials compromised through an infostealer malware infection in 2021.

Spectos confirmed the breach on April 1, stating unauthorized access to its systems had occurred, but there was no internal attack. The company has engaged cybersecurity experts to investigate the incident further and prevent future risks. Royal Mail responded by confirming its awareness of the breach and ongoing cooperation with Spectos to assess the impact. Despite the breach, Royal Mail’s operations and services were unaffected, and no disruptions occurred in its postal services.

Hudson Rock, a cybersecurity firm, linked the breach to stolen credentials from a Spectos employee in 2021. These credentials were used to access Royal Mail’s systems, which led to the exfiltration of sensitive data. The data leaked on the forum contains detailed metadata from Mailchimp, logistics and delivery information, and technical server files. The breach highlights the long-term consequences of compromised credentials and the vulnerability of third-party providers to cyberattacks.

This incident follows previous cybersecurity challenges for Royal Mail, including a major ransomware attack in January 2023. The breach’s full scope and the authenticity of the leaked data are still under investigation. Both Royal Mail and Spectos are working to determine if mitigation measures have been taken or if affected individuals need to be notified. The investigation is ongoing, and further updates are expected.

Reference:

  • Royal Mail Investigates Data Breach Linked to Third Party Supplier Spectos
Tags: April 2025cyber incidentsCyber Incidents 2025Cyber threats
ADVERTISEMENT

Related Posts

Infostealer Hidden in Steam Game

Hackers Target Amazon’s AI Code Bot

July 25, 2025
Infostealer Hidden in Steam Game

APTs Use Fake Dalai Lama Apps to Spy

July 25, 2025
Infostealer Hidden in Steam Game

Infostealer Hidden in Steam Game

July 25, 2025
Interlock Ransomware Threat Alert

Hackers Use Ransomware on SharePoint Servers

July 24, 2025
Interlock Ransomware Threat Alert

Data Breach Affects 340K Jobseekers

July 24, 2025
Interlock Ransomware Threat Alert

Beluga Vodka Ransomware Attack Reported

July 24, 2025

Latest Alerts

CastleLoader Uses Clickfix on Windows

Sophos, SonicWall Patch Critical RCE Bugs

Koske Malware Hides in Panda Images

Interlock Ransomware Threat Alert

GitLab Patches Key Vulnerabilities

Backdoor Found in WP Plugins

Subscribe to our newsletter

    Latest Incidents

    Hackers Target Amazon’s AI Code Bot

    APTs Use Fake Dalai Lama Apps to Spy

    Infostealer Hidden in Steam Game

    Data Breach Affects 340K Jobseekers

    Hackers Use Ransomware on SharePoint Servers

    Beluga Vodka Ransomware Attack Reported

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial