British Library Confirms Ransomware Attack

One of the world’s largest libraries has confirmed it was hit by a ransomware attack on October 28, and that it will take weeks or possibly months to fully recover. Now the Library has also confirmed that the ransomware attack has led to the theft of internal data and employee's information. They say the ransomware attack was launched “by a group known for such criminal activity.”

Hackers have claimed responsibility for the attack, and they are a ransomware gang called the Rhysida group who have demanded 20 Bitcoin, which is currently equivalent to £602,000 or $745,00, for the return of the stolen data, which includes employee passport scans and financial information.

The British Library has given no indication that it has entered into negotiation with the criminal  attackers.

In a statement on its Knowledge Matters blog, the Library said that some internal data has leaked online, which “appears to be from our internal HR files... We’re continuing to experience a major technology outage as a result of a cyber-attack. The outage is still affecting our website, online systems and services, as well as some onsite services including Wi-Fi... “We anticipate restoring many services in the next few weeks, but some disruption may persist for longer.”

The Recovery has been slow and the library's website is still offline. The IT outage affects the library's online systems, services and facilities, including public Wi-Fi.

In an update on its website, the facility, which is the United Kingdom's national library, as its name suggests, noted that it has taken protective measures in response to the attack and is undergoing a forensic investigation with the help of the London Metropolitan Police and the National Cyber Security Centre (NCSC), along with private cyber security specialists.

The library says that it hopes to be able to restore many of its services in the next few weeks "but some disruption may persist for longer."

 In its notice, the British Library affirmed that many of its public events will continue as planned and all of its in-person and live-streamed events are to continue. Its staff can be contacted by email, but they are receiving a high volume of inquiries, the institution warned.

Currently, the British Library’s physical sites in London and Yorkshire are fully open, as are reading rooms and items held within them.

 British Library:   Telegraph:   Independent:     Dark Reading:   Tech Crunch:     Computer Weekly:    

Times Higher Education:   Infosecurity Magazine

You Might Also Read:

British University Data Breaches Are A Lesson For All:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« FBI & CISA Advisory - Dealing With Ransom Attacks
Russian Hackers Have New Tools »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Renaissance

Renaissance

Renaissance is Ireland's premier value added distributor of IT security solutions and a leading independent provider of business continuity consultancy.

HireVergence

HireVergence

HireVergence is a full service IT staffing and recruiting firm with a focus on cyber and information security.

SySS

SySS

SySS is a market leader in penetration testing in Germany and Europe.

redGuardian

redGuardian

redGuardian is a DDoS mitigation solution available both as a BGP-based service and as an on-premise platform.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

RCMP National Cybercrime Coordination Unit (NC3)

RCMP National Cybercrime Coordination Unit (NC3)

As set out in the Government of Canada's National Cyber Security Strategy, the RCMP has established the National Cybercrime Coordination Unit (NC3).

Space ISAC

Space ISAC

Space ISAC is the only all-threats security information source for the public and private space sector.

SimSpace

SimSpace

SimSpace is the visionary yet practical platform for measuring how your security system responds under actual, sustained attack.

Leidos

Leidos

Leidos is a recognized leader in cybersecurity across the federal government, bringing more than a decade of experience defending cyber interests globally.

Fastcomcorp

Fastcomcorp

Fastcomcorp offers a world-class proactive cyber security defense and risk management consulting. Including Darkweb monitoring and posture assessments.

Bloc Ventures

Bloc Ventures

Bloc Ventures is an investment company providing long-term, ‘patient’ equity capital to early stage unquoted deep technology companies.

Across Verticals

Across Verticals

Across Verticals is a boutique cyber security consulting firm that specializes in holistic, deeply technical and end to end cyber security advisory services based on industry best practices.

SharkStriker

SharkStriker

SharkStriker is a US based managed security services provider with SOCs and offices across the globe.

Single Point of Contact

Single Point of Contact

Single Point of Contact is a Managed IT Services provider that helps businesses to achieve a seamless and secure IT environment.

SphereX Technologies

SphereX Technologies

SphereX is the first on-chain security solution for Web3 applications.

Options Technology

Options Technology

Options is a global leader in financial technology, specialising in Capital Markets technology and enterprise-grade solutions.