British Library Confirms Ransomware Attack

Uploaded on 2023-11-21 in FREE TO VIEW

One of the world’s largest libraries has confirmed it was hit by a ransomware attack on October 28, and that it will take weeks or possibly months to fully recover. Now the Library has also confirmed that the ransomware attack has led to the theft of internal data and employee's information. They say the ransomware attack was launched “by a group known for such criminal activity.”

Hackers have claimed responsibility for the attack, and they are a ransomware gang called the Rhysida group who have demanded 20 Bitcoin, which is currently equivalent to £602,000 or $745,00, for the return of the stolen data, which includes employee passport scans and financial information.

The British Library has given no indication that it has entered into negotiation with the criminal  attackers.

In a statement on its Knowledge Matters blog, the Library said that some internal data has leaked online, which “appears to be from our internal HR files... We’re continuing to experience a major technology outage as a result of a cyber-attack. The outage is still affecting our website, online systems and services, as well as some onsite services including Wi-Fi... “We anticipate restoring many services in the next few weeks, but some disruption may persist for longer.”

The Recovery has been slow and the library's website is still offline. The IT outage affects the library's online systems, services and facilities, including public Wi-Fi.

In an update on its website, the facility, which is the United Kingdom's national library, as its name suggests, noted that it has taken protective measures in response to the attack and is undergoing a forensic investigation with the help of the London Metropolitan Police and the National Cyber Security Centre (NCSC), along with private cyber security specialists.

The library says that it hopes to be able to restore many of its services in the next few weeks "but some disruption may persist for longer."

 In its notice, the British Library affirmed that many of its public events will continue as planned and all of its in-person and live-streamed events are to continue. Its staff can be contacted by email, but they are receiving a high volume of inquiries, the institution warned.

Currently, the British Library’s physical sites in London and Yorkshire are fully open, as are reading rooms and items held within them.

 British Library:   Telegraph:   Independent:     Dark Reading:   Tech Crunch:     Computer Weekly:    

Times Higher Education:   Infosecurity Magazine

You Might Also Read:

British University Data Breaches Are A Lesson For All:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« FBI & CISA Advisory - Dealing With Ransom Attacks
Russian Hackers Have New Tools »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Perkins Coie LLP

Perkins Coie LLP

Perkins Coie LLP is an internationalk law firm with offices across the USA and Asia. Practice areas include Privacy and Data Security.

AA Certification (AAC)

AA Certification (AAC)

AAC provide ISO Quality Management System certification services including ISO 27001.

Kount

Kount

Kount's “decision engine” platform is ideal for managing fraud in online/telephone channels that process payments and onboard new customers.

Engineering Group

Engineering Group

Engineering is the Digital Transformation Company, a leader in Italy and with over 80 offices across Europe, the United States, and South America.

Kingsley Napley

Kingsley Napley

Cyber crime is an area of growing legal complexity. Our team of cyber crime lawyers have vast experience of the law in this area.

Nuspire

Nuspire

Nuspire provide services to protect your network with best-in-class managed detection and response, allowing you to stay focused on managing your business.

AVORD

AVORD

AVORD is a cloud-based security testing platform that allows clients to manage security testing requirements in a far more productive and efficient way.

VariQ

VariQ

VariQ is a premier provider of Cybersecurity, Software Development and Cloud services to federal, state, and local government.

CACI International

CACI International

CACI is at the forefront of developing and delivering technological breakthroughs that transform and optimize government operations.

Pacific Cyber Security Operational Network (PaCSON)

Pacific Cyber Security Operational Network (PaCSON)

PaCSON is an operational cyber security network of regional working-level cyber security experts in the Pacific.

HolistiCyber

HolistiCyber

HolistiCyber provide state-of-the art consulting, services, and solutions to help proactively and holistically defend against a new era of constantly evolving cyber threats.

CyberconIQ

CyberconIQ

CyberconIQ provide an integrated Human Defense Platform that reduces the probability and/or the cost of a cybersecurity breach by measurably improving our clients risk posture and compliance culture.

Trustmarque

Trustmarque

Trustmarque delivers customer-centric IT solutions that enable better outcomes. We combine the technology, expertise and services to release value at every stage of the IT lifecycle.

Purple Team

Purple Team

Purple Team is an expert cybersecurity and managed security service provider focused on arming your IT infrastructure with both red team and blue team services.

HADESS

HADESS

We are "Hadess", a group of cyber security experts and white hat hackers.

Saffron Networks

Saffron Networks

Saffron Networks is an ISO-certified company. We assure our clients of reliable solutions, specifically with the Security landscape and Enterprise Networking.