Recently, the Rhysida ransomware gang targeted the British Library in a cyber attack that resulted in a significant loss of data. The cybercriminals have now shared almost 573GB of the stolen data on their dark web leak site, which includes over 490,000 unique files.
The culprits have claimed that the published data represents 90% of what they stole, indicating that they have managed to sell off a large portion of the data. Initially, the gang demanded 20 bitcoins in exchange for the entire dataset. This revelation has raised concerns about the extent of the breach and its potential impact on those affected.
It was discovered after the data dump that the stolen information contains personal details of the library’s readers and visitors. The British Library has taken steps to notify those affected by the breach through email, in which it has been disclosed that the cyber criminals gained access to its customer relationship management (CRM) databases.
The compromised data contains names, email addresses, and in some cases, postal addresses or telephone numbers. However, the library has reassured that its payment processing, handled by third-party providers, did not expose any credit or debit card details.In response to the attack, the British Library is collaborating with cybersecurity experts to reinforce its systems and restore services. The institution has implemented additional security measures to prevent future breaches and is actively working to investigate the incident.
Despite efforts to mitigate the impact, the British Library’s website and various online services remain inaccessible a month after the attack. While its physical locations have continued operations, the library anticipates that the disruption may persist for several months. The institution is committed to prioritizing the restoration of services and ensuring the security of its systems.
The incident serves as a stark reminder of the ongoing threat posed by cyber attacks and the importance of robust cybersecurity measures. The British Library has urged affected individuals to take precautionary steps, including changing passwords for any online services used in conjunction with its offerings.
As the investigation continues, the British Library remains dedicated to addressing the aftermath of the breach and safeguarding its community. The institution is focused on restoring its services and enhancing its resilience against future cyber threats.
