According to sources, Wabtec Corporation (a Critical Infrastructure organization in Pennsylvania) was hit with a cyber attack. It was first reported on 2023-01-05.
Source 1 | 2023-01-05
“Wabtec Corporation has finally disclosed details of a data security incident last year which led to the compromise of highly sensitive personal information. “
“The Pittsburgh-headquartered firm describes itself as the world’s leading rail technology company, operating in over 50 countries in the freight, transit, mining, industrial and marine sectors. The $8bn revenue firm suffered a ransomware attack first reported back in June 2022, attributed to the prolific LockBit group. “
“Although the incident is not mentioned explicitly in the new breach notice, the link between the two can be inferred from the fact that stolen data was “posted to the threat actor’s leak site,” according to Wabtec. The firm explained that, although it first became aware of unusual network activity on June 26 2022, it later determined that malware was planted on its systems as far back as March 15 that year. “
“It’s unclear exactly whose information was taken in the breach, although judging by the list of data types, it appears to be global Wabtec employees. There’s also no indication of the scale of the data theft. “
Guarding Against Ransomware
Cybersecurity for Critical Infrastructure
SecuLore provides Managed Detection and Response (MDR) to protect our nation’s critical infrastructure from cyber threats. Our expertise is built on deep knowledge of 9-1-1 technology, cyberwarfare, and ethical hacking, ensuring the highest level of cybersecurity for public safety agencies.
