While Continental already spoke in a statement on its website in August 2022 that the attack had been repelled, the ransomware group LockBit announced on its leak page that data captured by Continental had been published. According to the chat log, apparently 40 terabytes of data.
The APT group LockBit claims that it has successfully hacked and stolen data from the automotive supplier Continental. Now the data is to be published on the leak page, probably to increase the pressure on Continental. However, Continental has not published any information on a current attack. According to the chat log on the LockBit leak page, it is apparently about 40 terabytes of data.
Old or new attack on Continental?
On the website is only one release from August to be found with the title "Continental informs about averted cyber attack". The following text clearly states that “As part of a cyber attack, attackers have infiltrated parts of Continental's IT systems. The company identified this itself at the beginning of August and then averted it. Continental's business activities were never affected. The technology company has full control of its IT systems. According to the current state of knowledge, there is no impairment of the IT systems of third parties."
If you believe this statement, then LockBit cannot have captured any data. However, LockBit is not known for bluffs, but repeatedly publishes data from victims who are unwilling to pay. The gang has not yet released details about what data they exfiltrated from Continental's network or when the breach took place.
Since the counter on the LockBit leak page has expired, the entry “All available data published !” can now be found. If this is really the case, the data will soon appear for evaluation.