British telecommunications giant BT Group has confirmed it was targeted by the notorious ransomware group Black Basta in a cyberattack on its Conferencing division. The breach forced BT to isolate and shut down parts of its infrastructure to limit the damage. While BT has minimized the reported impact, Black Basta claims otherwise, alleging they exfiltrated 500GB of sensitive data during the attack. The group asserts that the stolen data includes:
- Financial records,
- Organizational details,
- Non-disclosure agreements,
- Confidential files, and
- Personal documents.
To substantiate these claims, the group has shared screenshots, folder listings, and other materials online, threatening to leak the data unless their ransom demands are met. The exact ransom amount remains undisclosed.
BT’s Response
In a statement to BleepingComputer, BT emphasized its swift action to contain the breach: “We identified an attempt to compromise our BT Conferencing platform. This incident was restricted to specific elements of the platform, which were rapidly taken offline and isolated. The impacted servers do not support live BT Conferencing services, which remain fully operational, and no other BT Group or customer services have been affected.”
This article has been indexed from CySecurity News – Latest Information Security and Hacking Incidents
Read the original article: