According to The Mirror, individuals linked to Russia have reportedly targeted Zaun, a company responsible for security services at several highly classified British locations, including a nuclear submarine base and a chemical weapon laboratory in Porton Down.
Subsequently, the stolen data was posted on the dark web. The leaked information could potentially aid criminals in gaining access to the heavily guarded Ministry of Defence (MoD) sites.
The cyberattack on Zaun took place last month and was attributed to LockBit, a hacking group deemed one of the most dangerous worldwide. Mikhail Matveev, a prominent figure in this group, is among the FBI’s Most Wanted.
LockBit has previously launched attacks on approximately 1,400 targets globally and attempted a £66 million extortion scheme against the Royal Mail. There are suspicions of financial ties between LockBit and Russian criminal networks.
Among the exposed documents were detailed records of security equipment purchases made by Zaun to safeguard locations such as Porton Down and HMNB Clyde. The leaked materials also included sales order reports for equipment used at other sensitive sites like the GCHQ communications complex in Bude, Cornwall, RAF Waddington, and Cawdor Barracks.
Additionally, the stolen information encompassed documents related to high-security prisons like Lon Lartin and Whitemoor. Notably, specific equipment details have not been disclosed, and Zaun has not provided information regarding any ransom demands.
Labour MP Kevan Jones, a member of the Commons Defence Select Committee, has voiced concerns about the potential harm to national security, describing it as a significant threat to sensitive sites.
A security expert characterized the incident as a severe setback to the national security infrastructure. LockBit has issued £80 million in ransom demands globally and has been on the FBI’s radar since 2020.
In the United States, Russian nationals Rlan Magomedovich Astamirov and Mikhail Vasiliev face charges in connection with LockBit ransomware attacks.
Zaun has reported the cyberattack to the police and asserts that no classified documents were compromised. The government has declined to comment on security matters, as reported by The Mirror.
Security and intelligence expert Professor Anthony Glees highlighted the gravity of the leaked information, emphasizing that every detail aids hostile actors in breaching the UK’s defenses. He also pointed out that lax protocols, particularly among suppliers, constitute a vulnerability in national security.
Source: with agencies