Austal USA, a shipbuilding firm and a contractor for the U.S. Division of Protection (DoD) and the Division of Homeland Safety (DHS) confirmed that it suffered a cyberattack and is at the moment investigating the influence of the incident.
The corporate relies in Australia and makes a speciality of high-performance aluminum vessels. Its American subsidiary, Austal USA, is beneath contract for a number of packages that embody constructing Independence class littoral fight ships for the U.S. Navy, that are 127-meter-long vessels at a price of $360 million per unit. Austal additionally has an lively $3.3 billion contract for constructing 11 patrol cutters for the U.S. Coast Guard.
Earlier in the present day, the Hunters Worldwide ransomware and knowledge extortion group claimed to have breached Austal USA and leaked some data as proof of the intrusion.
Responding to a request for remark, a spokesperson for the corporate confirmed the assault to BleepingComputer and stated that Austal USA acted rapidly to mitigate the incident:
Austal USA just lately found a knowledge incident. We had been in a position to rapidly mitigate the incident leading to no influence on operations.
Regulatory authorities, together with the Federal Bureau of Investigation (FBI) and Naval Felony Investigative Service (NCIS) had been promptly knowledgeable and stay concerned in investigating the reason for the state of affairs and the extent of data that was accessed.
No private or categorised data was accessed or taken by the risk actor. We’re working carefully with the suitable authorities and can proceed to tell any stakeholders impacted by the incident as we study new data.
Austal USA acknowledges the seriousness of this occasion and the particular duty now we have as a DoD and DHS contractor. Our evaluation is on-going as we search to completely perceive this incident in order that we are able to stop an identical incidence.
Hunters Worldwide threaten to publish extra knowledge stolen from Austal’s techniques within the following days, together with compliance paperwork, recruiting data, finance particulars, certifications, and engineering knowledge.
Austal USA didn’t share if the risk actor was in a position to entry knowledge about engineering schematics or different proprietary U.S. Navy know-how.
Hunters Worldwide emerged just lately as a ransomware-as-a-service (RaaS) operation and is believed to be a rebrand of the Hive ransomware gang, a principle primarily based on overlaps within the malware code.
The group denied the allegations, although, saying that they’re a brand new operation that bought the encryptor supply code from the defunct Hive. In line with the risk actor, encryption is just not the tip aim of their assaults, as their focus is on stealing knowledge and utilizing it as leverage to extort victims into paying a ransom.
In the intervening time, the gang’s knowledge leak website lists nicely over a dozen victims in numerous sectors and from numerous areas of the world.
