British Library Confirms Ransomware Attack

One of the world’s largest libraries has confirmed it was hit by a ransomware attack on October 28, and that it will take weeks or possibly months to fully recover. Now the Library has also confirmed that the ransomware attack has led to the theft of internal data and employee's information. They say the ransomware attack was launched “by a group known for such criminal activity.”

Hackers have claimed responsibility for the attack, and they are a ransomware gang called the Rhysida group who have demanded 20 Bitcoin, which is currently equivalent to £602,000 or $745,00, for the return of the stolen data, which includes employee passport scans and financial information.

The British Library has given no indication that it has entered into negotiation with the criminal  attackers.

In a statement on its Knowledge Matters blog, the Library said that some internal data has leaked online, which “appears to be from our internal HR files... We’re continuing to experience a major technology outage as a result of a cyber-attack. The outage is still affecting our website, online systems and services, as well as some onsite services including Wi-Fi... “We anticipate restoring many services in the next few weeks, but some disruption may persist for longer.”

The Recovery has been slow and the library's website is still offline. The IT outage affects the library's online systems, services and facilities, including public Wi-Fi.

In an update on its website, the facility, which is the United Kingdom's national library, as its name suggests, noted that it has taken protective measures in response to the attack and is undergoing a forensic investigation with the help of the London Metropolitan Police and the National Cyber Security Centre (NCSC), along with private cyber security specialists.

The library says that it hopes to be able to restore many of its services in the next few weeks "but some disruption may persist for longer."

 In its notice, the British Library affirmed that many of its public events will continue as planned and all of its in-person and live-streamed events are to continue. Its staff can be contacted by email, but they are receiving a high volume of inquiries, the institution warned.

Currently, the British Library’s physical sites in London and Yorkshire are fully open, as are reading rooms and items held within them.

 British Library:   Telegraph:   Independent:     Dark Reading:   Tech Crunch:     Computer Weekly:    

Times Higher Education:   Infosecurity Magazine

You Might Also Read:

British University Data Breaches Are A Lesson For All:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« FBI & CISA Advisory - Dealing With Ransom Attacks
Russian Hackers Have New Tools »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Duane Morris LLP

Duane Morris LLP

Duane Morris is a global law firm with offices in the USA, UK and Asia. Practice areas include Cybersecurity.

WatchGuard

WatchGuard

WatchGuard is a leader in network security, secure Wi-Fi, and network intelligence products and services for SMBs and Enterprises worldwide.

Maverick Technologies

Maverick Technologies

Maverick is an industrial automation, enterprise integration and operational consulting company. Services include industrial cyber security.

Uniscon

Uniscon

Uniscon is a leading provider of cloud security solutions in Europe.

Center for Identity - University of Texas at Austin

Center for Identity - University of Texas at Austin

The mission of the Center is to deliver the highest-quality discoveries, applications, education, and outreach for excellence in identity management, privacy, and security.

Oxford BioChronometrics

Oxford BioChronometrics

By building profiles based on electronically Defined Natural Attributes, or e-DNA, Oxford BioChronometrics protects digital networks, communities, individuals and other online assets from fraud.

TUV Rheinland Group

TUV Rheinland Group

TUV Rheinland Group is a testing services company with nearly 145 years of technological experience. We help you to protect your systems comprehensively, proactively and permanently.

ArcRan Information Technology

ArcRan Information Technology

ArcRan concentrates on developing comprehensive cybersecurity solutions for smart city applications. We believe that cybersecurity is the fundamental enabler of IoT development.

Periculus

Periculus

Periculus makes managing digital risk simple. Its integrated platform offers access to purchase cyber insurance and cyber security solutions uniquely tailored to fit the needs of every business.

Scrut Automation

Scrut Automation

Scrut Automation's mission is to make compliance less painful and time consuming, so that businesses can focus on running their business.

Verisign

Verisign

Verisign is a Global Leader in Domain Names & Internet Security, providing protection for websites and enterprises around the world.

Archer Technologies

Archer Technologies

Archer helps organizations manage risk in the digital era—uniting stakeholders, integrating technologies and transforming risk into reward.

Cyclops

Cyclops

Cyclops is the first Contextual Search Platform for cybersecurity.

Dexian

Dexian

Dexian is a leading provider of staffing, IT, and workforce solutions with nearly 12,000 employees and 70 locations worldwide.

BARR Advisory

BARR Advisory

At BARR Advisory, we build trust through cyber resilience. We help protect the world’s data, people, and information networks through a human-first approach to cybersecurity and compliance.

Cysmo Cyber Risk

Cysmo Cyber Risk

Cysmo is an innovative cyber risk assessment platform specifically designed for the needs of the German insurance industry.