British Library Confirms Ransomware Attack

Uploaded on 2023-11-21 in FREE TO VIEW

One of the world’s largest libraries has confirmed it was hit by a ransomware attack on October 28, and that it will take weeks or possibly months to fully recover. Now the Library has also confirmed that the ransomware attack has led to the theft of internal data and employee's information. They say the ransomware attack was launched “by a group known for such criminal activity.”

Hackers have claimed responsibility for the attack, and they are a ransomware gang called the Rhysida group who have demanded 20 Bitcoin, which is currently equivalent to £602,000 or $745,00, for the return of the stolen data, which includes employee passport scans and financial information.

The British Library has given no indication that it has entered into negotiation with the criminal  attackers.

In a statement on its Knowledge Matters blog, the Library said that some internal data has leaked online, which “appears to be from our internal HR files... We’re continuing to experience a major technology outage as a result of a cyber-attack. The outage is still affecting our website, online systems and services, as well as some onsite services including Wi-Fi... “We anticipate restoring many services in the next few weeks, but some disruption may persist for longer.”

The Recovery has been slow and the library's website is still offline. The IT outage affects the library's online systems, services and facilities, including public Wi-Fi.

In an update on its website, the facility, which is the United Kingdom's national library, as its name suggests, noted that it has taken protective measures in response to the attack and is undergoing a forensic investigation with the help of the London Metropolitan Police and the National Cyber Security Centre (NCSC), along with private cyber security specialists.

The library says that it hopes to be able to restore many of its services in the next few weeks "but some disruption may persist for longer."

 In its notice, the British Library affirmed that many of its public events will continue as planned and all of its in-person and live-streamed events are to continue. Its staff can be contacted by email, but they are receiving a high volume of inquiries, the institution warned.

Currently, the British Library’s physical sites in London and Yorkshire are fully open, as are reading rooms and items held within them.

 British Library:   Telegraph:   Independent:     Dark Reading:   Tech Crunch:     Computer Weekly:    

Times Higher Education:   Infosecurity Magazine

You Might Also Read:

British University Data Breaches Are A Lesson For All:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« FBI & CISA Advisory - Dealing With Ransom Attacks
Russian Hackers Have New Tools »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Hiscox

Hiscox

Hiscox offers cyber and data risks insurance to protect your business against the risks of holding data and using computer systems..

Sequitur Labs

Sequitur Labs

Sequitur Labs is developing seminal technologies and solutions to secure and manage connected devices of today and in the future.

Modulo Security

Modulo Security

Modulo provides automated Governance, Risk, and Compliance (GRC) solutions.

Halon

Halon

Halon is a flexible security and operations platform for in-transit email.

FileWave

FileWave

FileWave offers a single solution for managing apps, devices, and more for Mac, Windows, and mobile devices.

Fugue

Fugue

Fugue ensures cloud infrastructure stays in continuous compliance with enterprise security policies.

NeuroChain

NeuroChain

NeuroChain is an intelligent ecosystem that is more secure, more reliable and much faster than blockchain.

Fiserv

Fiserv

Fiserv offers a wide array of Risk & Compliance solutions to help you prevent losses from fraud and ensure adherence to regulatory and compliance mandates.

Titans24

Titans24

Titans24 is a Software-as-a-Service security platform for web applications. It prevents attacks on business websites that are protected under 11 cyber-security layers.

jobsDB.com

jobsDB.com

jobsDB Singapore is a search engine for jobs throughout Singapore.

Brighterion

Brighterion

Brighterion solutions stop payment and acquirer fraud, reduce credit risk and delinquency, fight financial crime, prevent healthcare fraud, waste and abuse, and more.

Partners in Regulatory Compliance (PIRC)

Partners in Regulatory Compliance (PIRC)

Partners in Regulatory Compliance provides an array of cybersecurity services including cybersecurity policy management, risk assessments and regulatory compliance consulting.

LiveAction

LiveAction

LiveAction provides end-to-end visibility of network and application performance from a single pane of glass.

Athena7

Athena7

Athena7 is a dedicated assessment practice committed to helping organizations understand how their infrastructure, backups, and security controls will withstand the latest threat actor tactics.

Noma Security

Noma Security

Noma Security's mission is Application Security for the Entire Data & AI Lifecycle.

Legion Security

Legion Security

Complement your SOC team with an AI agent that observes your best analysts' investigations, learns their unique workflows, and scales them.