NATO Secret Missile Data Found On The Dark Web

Uploaded on 2022-09-21 in TECHNOLOGY--Hackers, GOVERNMENT-Defence, FREE TO VIEW

NATO is urgently investigating a data leak, including blueprints of sophisticated weapons, that have evidently been stolen for European missile systems firm MBDA.  In August, the French missile producer acknowledged that it had been the subject of a blackmail attempt purported by a criminal group and hackers have placed the stolen data for sale on the Dark Web

MBDA confirms that the data for sale does belong to them and that the breach appears to have been in the form of a ransomware attack. They say the stolen data was acquired from a compromised external hard drive, rather than internal networks. It is understood investigations are centered on one of MBDA's suppliers.

MBDA Missile Systems headquarters are located in France and sells weapons to several different NATO countries.  Last year it posted revenue of £3.5bn and counts the British Ministry of Defence, the US military and NATO as customers for its weapons systems. The company was created in December 2001 after the merger of missile systems companies in France, Italy and the UK and is the world’s second largest manufacturer of missiles. The company has manufacturing plants in France, Italy, Britain, and Spain and employs over 13,000 people.

MBDA has three main product lines: air-to-air missiles, air-to-surface missiles, and surface-to-air missiles. Its products are used by the militaries of more than 40 countries. 

MBDA was the subject of a blackmail attempt by a criminal group that falsely claims to have hacked the company’s information networks. Following the company’s refusal to yield to this blackmail threat and pay a ransom demand, the criminal group has spread information on the Internet, making it accessible for a payment. This failed ransom attempt is the subject of an investigation by the Italian security agencies.

The company refused to submit to a ransom demand and the alleged non-classified information was subsequently leaked online. The data for sale on both Russian and English-language forums and consists of 80GB and is currently listed for 15 bitcoins, worth around $300,000. The cyber criminals are understood to have already sold the data to at least one buyer.

MBDA Systems:     Oodaloop:   Dark Reading:   BBC:    HackreadFortune

You Might Also Read: 

Killnet Turn Their Attention To Lockheed Martin:


 

« Dutch Town Sues Twitter For Paedophile Conspiracy
DARPA Wants To Play With Artificial Intelligence »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

RedTeam Security

RedTeam Security

RedTeam Security is a provider of Penetration Testing, Social Engineering, Red Teaming and Red Team Training services.

MailGuard

MailGuard

MailGuard delivers a full suite of security solutions across email and web to protect your business before threats reach your environment.

PakCERT

PakCERT

PakCERT is the national Computer Emergency Response Team for Pakistan.

CyberGhost

CyberGhost

CyberGhost is a Virtual Private Network services provider offering secure encrypted access to the internet.

Verifi

Verifi

Verifi is an award-winning provider of end-to-end payment protection and risk management solutions.

Checksum Consultancy

Checksum Consultancy

Checksum Consultancy specializes in Information security, Risk management, and IT governance.

Sponge

Sponge

Sponge is a world-renowned digital learning provider on a mission to make learning unforgettable.

Jerusalem Venture Partners (JVP)

Jerusalem Venture Partners (JVP)

JVP’s Center of Excellence in Be’er Sheva aims to identify, nurture and build the next wave of cyber security and big data companies to emerge out of Israel.

Portshift

Portshift

Portshift leverages the power of Kubernetes and Service-Mesh to deliver a single source of truth for containers and cloud-native applications security.

SurePassID

SurePassID

SurePassID is a provider of highly secure, highly extensible multi-factor authentication (MFA) solutions.

Conference on Applied Machine Learning in Information Security (CAMLIS)

Conference on Applied Machine Learning in Information Security (CAMLIS)

CAMLIS is a venue for discussing applied research on machine learning, deep learning and data science in information security.

QAlified

QAlified

QAlified offer independent testing and quality assurance services for software projects including security testing.

Blockfence

Blockfence

Blockfence are a seasoned crew versed in enterprise-grade cybersecurity and crypto, on a mission to collaboratively shape the future of Web3 security.

Nuke From Orbit

Nuke From Orbit

Nuke's mission is to put you back in control of your digital identity when your smartphone gets stolen.

InterSources

InterSources

InterSources is a trusted partner, leading the way in Cloud Security, Cybersecurity, PLG Consulting, Digital Transformation, and Professional Services.

Surf Security

Surf Security

SURF Security has transformed the browser into your strongest security asset while providing complete end-user privacy – all with full compliance.