Ransomware attacks are scary to the point that intruders have the full control of the stolen data. Some hackers are still leaking the information despite receiving the payment.
In the case of the British Library ransomware attack, the Rhysida ransomware gang took responsibility for the incident.
Apparently, the personal data stolen during the attack were up for sale online. The UK's biggest library, a home to an extensive collection of 14 million books and myriad items, is grappling with the aftermath of the attack.
Ransomware Group Rhysida is Selling Stolen Personal Data
A ransomware attack hit the British Library in October, but only recently that authorities discovered that the hackers are selling the stolen personal data online.
Rhysida, in a bold move, asserted responsibility for the cyber-attack and showcased low-resolution images of personal information on the dark web. The stolen data, touted as "exclusive, unique, and impressive," is being auctioned with an opening bid of 20 bitcoins, equivalent to approximately £596,000. The revealed images indicate compromised employment contracts and passport details.
Related Article: Black Basta Ransomware Gang Steals 'Large Number of Files' from Toronto Public Library
British Library Confirms Data Leakage
Acknowledging the severity of the situation, the British Library confirmed the leakage of data related to its internal HR information. While not explicitly confirming Rhysida's involvement, the library assured that protective measures were implemented, and investigations were ongoing with support from the National Cyber Security Centre (NCSC), Metropolitan police, and cybersecurity experts.
"We are working with the British Library to fully understand the impact of an incident. Ransomware is the key cyber threat facing the UK, and all organizations should take immediate steps to limit risk by following our advice on how to put in place robust defenses to protect their networks," an NCSC spokesperson said.
The repercussions of the ransomware attack are anticipated to extend for months, impacting library services. Users have been advised to alter shared logins on other platforms as a precaution. The library, in collaboration with cybersecurity authorities, continues its efforts to safeguard system integrity.
Operational Impact on British Library Services
Since the attack on Oct. 31, the British Library's website remains inaccessible, affecting both online services and onsite facilities such as reading rooms and public wifi. While efforts are underway to restore services, some disruptions are expected to persist, per The Guardian.
According to British Library's chief executive Roly Keating, they are grateful to know that more people understand the situation that they are dealing with right now. He hopes that the online systems will be stores in a "safe and sustainable manner."
Rhysida's Notorious Track Record
Rhysida, recognized for targeting "opportunistic" entities, has previously attacked diverse sectors, including education, healthcare, manufacturing, information technology, and government. Recent victims include the Chilean army, the Portuguese city of Gondomar, and the University of the West of Scotland.
For more ransomware-related reports and updates, don't forget to stay on the go with our latest news here.
Read Also: Dolly.com Hackers Leak Data Despite Receiving Ransom
