Capita Cyber Attack in March 2023

 

Capita Cyber Attack in March 2023



    Capita plc is an international business process outsourcing and professional services company in London. It is the Largest business process outsourcing and professional services company in the United Kingdome. It holds the largest market share in the United Kingdom, accounting for 29% in 2016. 

On March 31, 2023, Capita plc experienced a significant cyber attack that left its systems offline and raised concerns about the security of its clients' data. This blog post provides a detailed timeline of the events surrounding the attack and its aftermath. 




            This attack began on march 22, 2023, when the Black Busta ransomware gang gained access to capita's system. The BlackBusta ransomware gang is a cybercriminal group known for its involvement in ransomware attacks. They operate by encrypting the data of their victims and demanding ransom payments in exchange for decryption keys or tools that allow the victims to regain access to their files. Like many ransomware groups, BlackBusta's primary motive is financial gain through extortion. For this, the balck busta gang used modern methods and could not identify this attack until march 31. During that time black busta has used variouse methods to gain access and maintain access to the capital network.
    
               However,  Capita later discovered the issue and announced it to the public. The company initially described the incident as a technical issue affecting internal applications, but did not confirm whether it was a cyber attack or a data breach. Over the next two weeks, capita continued to issue statements and on 17th April 2023, the Black Busta gang claimed responsiblity for the attack at the event itself. They later published the stolen data on their dark web leak site. This comfirmed that the incident was indeed a ransomware attack. 

               Capita's investigation revealed that the attack had been ongoing since March 22, 2023, and that some data had been exfiltrated. The company assured that it would notify any affected parties in a timely manner. The UK Information Commissioner's Office (ICO) and the Pensions Regulator have also become involved in the incident, urging clients to assess the potential impact on their data. 

                 The attack had significant financial impact on Capita. It reported a net loss of $135.6 million for 2023 due to the financial breach. More than 4.3 million members of pension schemes were affected by the move due to distruption of services and risk to pension payments. And also Around 90 organizations reported breaches of personal data held by Capita. The company’s systems manage pension funds for major firms like Royal Mail and Axa, exposing sensitive information. This breach raised concerns about data security and potential fraud risks for victims. Capita worked closely with specialists to investigate and secure the compromised data. The company also had to spend an amount between 15-20 million pounds to recover the company.

                The Capita cyber attack in March 2023 was a significant incident that highlights the importance of robust cybersecurity measures and timely incident response. As the incident continues to unfold, it is crucial for clients and stakeholders to remain vigilant and take steps to protect their data.



                                                                   - 13/06/2024
                                                                   -Maneesha Dewmina
                                                                 (Undergraduate of Cicra campus,  BSC Cyber security)
                                           
                                                                                                                    
  

Location: Kurunegala, Sri Lanka

Comments

  1. AnonymousJune 13, 2024 at 4:22 AM

    Its interesting ...

    ReplyDelete
  2. AnonymousJune 13, 2024 at 4:23 AM

    Is black busta a ransomeware?

    ReplyDelete
    Replies
    1. Maneesha DewminaJune 13, 2024 at 4:27 AM

      Black Busta is a ransomeware. on the other hand It is a gang of hackers. Like The Conti group is a notorious ransomware gang known for using the Conti ransomware in their operations. The Black Busta gang is using black busta ransomeware in their operations.

      Delete
    2. AnonymousJune 13, 2024 at 4:35 AM

      Thank you...

      Delete

Post a Comment

Popular posts from this blog

The Rice Of Cyber Scams

Image
 The Rice Of Cyber Scams How to identify and protect yourself from online fraud.                In today’s digital age, cyber scams are becoming increasingly common, targeting unsuspecting individuals through various online platforms. Social media, especially Facebook, and Telegram have become a popular hunting ground for scammers looking to deceive users with fake job offers, fraudulent schemes, and more. This blog post will explore some recent examples of cyber scams, provide tips on how to recognize them and offer advice on how to protect yourself.           Cyber scams are deceptive schemes carried out over the internet, aimed at tricking people into giving away personal information, money, or both. These scams come in many forms, including phishing emails, fake job offers, romance scams, and investment frauds. Scammers use social media platforms to reach a broad audience, making it easier to find potent...
Read more

I LOVE YOU ❤️🦠☠️

Image
I LOVE YOU කියලා ඊමේල් එකක් ආවොත් මොකද කරන්නෙ?...... මේ කතාව ඒ ගැන. I LOVE YOU, LOVE BUG සහ LoveLetter යන නම් වලින් හදුන්වනු ලබන්නේ Social Engineering  භාවිත වූ ලොව පලමු පරිගනක worm වර්ගයේ පරිගනක අනිෂ්ඨ මෘදුකාංගයකි. මෙය Social Engineering භාවිතයෙන් ඊමේල් Attachment හරහා ව්‍යාප්ත වූ අතර මෙහි නිර්මාතෲ වූයේ පිලිපීන ජාතික Onel De Guzman වේ. ඔහු AMA Computer College එකෙහි ඉගෙනුම ලැබූ 24 හැවිරිදි පරිගනක විද්‍යාව හදාරන සිසුවෙකි. ඒ 2000 වසරේදීය.  මෙම වයිරසය ව්‍යාප්ත වීමේදී Email එකෙහි Subject එක ILOVEYOU ලෙස යොදාගෙන තිබුනි. එහි Attachment එකෙහි නාමය LOVE-LETTER-FOR-YOU.TXT.vbs ලෙස තිබූ අතර එකල පරිගනක වල file extention එක නොපෙන්වූ නිසා එය LOVE-LETTER-FOR-YOU.TXT ලෙස දිස් වූ අතර එය .vbs වර්ගයේ පරිගනක ප්‍රෝග්‍රෑම් එකකි. එය මෙම attachment එක මත ක්ලික් කල පසු අනිෂ්ට මෘදුකාංගය පරිගනකයට Download වූ අතර මෙය තමාට ආදරය කරන පුද්ගලයෙකු විසින් එවන ලද්දක් බව සිතා මෙය open කිරීමේදී මෙම අනිෂ්ඨ මෘදුකාංගය ක්‍රියාත්මක වූ විය. මෙහි ප්‍රධාන අරමුන වූයේ පාස්වර්ඩ් සොරකම් කිරීමයි. මෙම අනිෂ්ඨ මෘදුකාංගය මගින් ප...
Read more