British Library Confirms Ransomware Attack

Uploaded on 2023-11-21 in FREE TO VIEW

One of the world’s largest libraries has confirmed it was hit by a ransomware attack on October 28, and that it will take weeks or possibly months to fully recover. Now the Library has also confirmed that the ransomware attack has led to the theft of internal data and employee's information. They say the ransomware attack was launched “by a group known for such criminal activity.”

Hackers have claimed responsibility for the attack, and they are a ransomware gang called the Rhysida group who have demanded 20 Bitcoin, which is currently equivalent to £602,000 or $745,00, for the return of the stolen data, which includes employee passport scans and financial information.

The British Library has given no indication that it has entered into negotiation with the criminal  attackers.

In a statement on its Knowledge Matters blog, the Library said that some internal data has leaked online, which “appears to be from our internal HR files... We’re continuing to experience a major technology outage as a result of a cyber-attack. The outage is still affecting our website, online systems and services, as well as some onsite services including Wi-Fi... “We anticipate restoring many services in the next few weeks, but some disruption may persist for longer.”

The Recovery has been slow and the library's website is still offline. The IT outage affects the library's online systems, services and facilities, including public Wi-Fi.

In an update on its website, the facility, which is the United Kingdom's national library, as its name suggests, noted that it has taken protective measures in response to the attack and is undergoing a forensic investigation with the help of the London Metropolitan Police and the National Cyber Security Centre (NCSC), along with private cyber security specialists.

The library says that it hopes to be able to restore many of its services in the next few weeks "but some disruption may persist for longer."

 In its notice, the British Library affirmed that many of its public events will continue as planned and all of its in-person and live-streamed events are to continue. Its staff can be contacted by email, but they are receiving a high volume of inquiries, the institution warned.

Currently, the British Library’s physical sites in London and Yorkshire are fully open, as are reading rooms and items held within them.

 British Library:   Telegraph:   Independent:     Dark Reading:   Tech Crunch:     Computer Weekly:    

Times Higher Education:   Infosecurity Magazine

You Might Also Read:

British University Data Breaches Are A Lesson For All:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« FBI & CISA Advisory - Dealing With Ransom Attacks
Russian Hackers Have New Tools »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

CLUSIF

CLUSIF

Clusif is the reference association for digital security in France. Its mission is to promote the exchange of ideas and feedback through working groups, conferences and publications.

Jetico

Jetico

Jetico provides pure & simple data protection software for all sensitive information throughout the lifecycle. Solutions include data encryption and secure data erasure.

LRQA Nettitude

LRQA Nettitude

LRQA Nettitude is an award-winning global provider of cybersecurity services, bringing innovative thought leadership to the ever-evolving cybersecurity marketplace.

NordForsk

NordForsk

NordForsk facilitates and provides funding for Nordic research cooperation and research infrastructure. Project areas include digitalisation and digital security.

DFLabs

DFLabs

DFlabs is a pioneer in Security Automation & Orchestration technology, leveraging your existing security products to dramatically reduce the response and remediation gap.

TeskaLabs

TeskaLabs

TeskaLabs is a software vendor of cybersecurity and data privacy products.

Cyber Polygon

Cyber Polygon

Cyber Polygon is an annual online exercise which connects various global organisations to train their competencies and exchange best practices.

Foretrace

Foretrace

Foretrace aims to prevent, assess, and contain the exposure of customer accounts, domains, and systems to malicious actors.

Extreme Engineering Solutions (X-ES)

Extreme Engineering Solutions (X-ES)

Extreme Engineering Solutions is a leader in the design, manufacture, testing, and support of hardware and software solutions for the embedded computing market.

Prevasio

Prevasio

Prevasio is a next-gen Cloud Security Posture Management (CSPM) with a built-in Vulnerability and Anti-Malware Scan for Containers.

MTI

MTI

MTI is a solutions and service provider, specialising in data & cyber security, datacentre modernisation, modern workplace, IT managed services and IT transformation services.

CyberQP

CyberQP

CyberQP (formerly Quickpass Cybersecurity) provide Privileged Access Management built for MSPs. Our system is designed to reduce ransomware and social engineering attack risks.

Vertex Cyber Security

Vertex Cyber Security

Vertex provide Cyber Security Services to small to large businesses including Advise, Consulting, Adding Security Partnership, Penetration Testing, ISO 27001-2 and Audits.

Camms

Camms

Camms are a team of experienced professionals dedicated to providing innovative GRC software solutions that help organizations manage risk, make informed decisions, and drive positive change.

Upwind Security

Upwind Security

Upwind delivers comprehensive cloud security, precisely when and where it’s most critical.

iConnect IT Business Solutions DMCC

iConnect IT Business Solutions DMCC

iConnect is a trusted IT Solutions and Technology Services company, proudly serving clients across the Middle East and Africa.