Royal Mail CEO confirms cyberattack downed UK postal provider • TechCrunch

Royal Mail vans outside a depot in Stoke-on-Trent in the U.K. following a cyberattack on its systems.

Symbol Credit: Nathan Stirk/Getty Photographs

Royal Mail CEO Simon Thompson has showed {that a} cyberattack is guilty for the continued disruption on the U.Okay. postal large.

The admission comes nearly every week after Royal Mail first mentioned it was once hit by way of an unspecified “cyber incident” that left the British mail provider not able to dispatch pieces to out of the country locations.

“We’ve showed that we’ve had a cyberattack,” Thompson advised a U.Okay. parliamentary committee on Tuesday according to questions from lawmakers. Thompson added that whilst the mail provider believes that no buyer information was once compromised within the assault, the group is ready for that scenario to modify and has already notified the U.Okay. information coverage regulator, the Data Commissioner’s Place of job, as a precaution.

Thompson — who gave proof to lawmakers right through a consultation about Royal Mail’s ongoing dispute with its union employees — declined to touch upon specifics of the cyberattack, mentioning recommendation that

Thompson added that the Royal Mail, which is operating with nationwide safety companies following the cyberattack, claimed that discussing main points of the incident can be “destructive” to the continued investigation, however showed that the postal provider continues to enjoy disruption to its world export services and products following the cyberattack.

Royal Mail has but to verify when this disruption is more likely to finish — compounded by way of current backlogs and delays that experience arisen from strike motion — however Thompson mentioned a “workaround” will have to be to be had quickly.

“For export parcels and letters via our postal services and products… we’re now not in a position to supply that provider,” he mentioned. “The group had been operating on workarounds in order that we will get the provider up and working once more,” and mentioned the Royal Mail could have “extra information to proportion” quickly.

There stays various unanswered questions in regards to the Royal Mail’s cyberattack, akin to the character of the incident and who’s accountable.

Some media stories have claimed that Royal Mail was once the objective of ransomware that compromised machines used to print customs labels for parcels despatched to out of the country locations. A public-facing consultant for LockBit, a ransomware team accused of launching the assault at the postal provider, to start with denied involvement, and pointed blame to different hackers the usage of the group’s leaked ransomware builder device. Brett Callow, a ransomware professional and risk analyst at Emsisoft, shared a publish from the LockBit consultant reputedly admitting {that a} LockBit associates had been accountable for the assault.

TechCrunch has but to make sure LockBit’s involvement, and Royal Mail has no longer been indexed at the gang’s darkish internet leak web page. When reached by way of electronic mail, Royal Mail spokesperson Mark Side road declined to remark.

Leave a Comment

Your email address will not be published. Required fields are marked *