Back in October, the APT group LockBit reported that Boeing's systems had been penetrated and a lot of data had been stolen. Shortly afterwards, the group complained online because Boeing was apparently not willing to negotiate. Since no ransom appears to have been paid, LockBit has now published around 43 GB of data on the darknet.
Fewer and fewer companies are paying for data stolen by cyber attackers. This is probably also the case with Boeing, which was hacked by LockBit at the end of October 2023, the data was encrypted using ransomware and stolen. According to the classic strategy of double blackmail, LockBit published around 4 GB of data that was supposed to come from Boeing weeks ago.
43 GB of data on the dark web
At the same time, the LockBit group complained that Boeing was not taking the blackmail seriously and started a counter in which all captured data would be published after it expired. Since the ultimatum has now expired, the LockBit leak page is available for everyone to download on the Darknet. The first experts are said to have downloaded the packages and report that they contain just over 43 GB of data. The time stamp for most files has the date October 22, 2023. In principle, only Boeing can confirm whether the data is all real or not.
However, Boeing has not commented further on the hack or the data publication, except to individual main media outlets.
LockBit promises data deletion
Boeing spokespeople had announced in various media that after paying the ransom you would only receive a promise that the LockBit data would be deleted. That may be true, but of course no one knows whether they have previously sold a copy of all the data. Since Boeing also works in the military sector, foreign services are likely to be particularly interested in the data. Of course, it is not known whether such explosive information was actually stolen.
LockBit has also just published the data from the bicycle parts manufacturer Shimano. In this case it should also be over 40 GB of data.