Home
 » ISP News » 
Sponsored Links

Ransomware Group Claims to Have Breached One of BT’s UK Systems

Thursday, Dec 5th, 2024 (7:17 am) - Score 4,120
bt office building uk logo photo

Broadband and telecoms giant BT Group has confirmed that a ransomware gang made an “attempt” to compromise their BT Conferencing business platform. The group, which calls itself Black Basta, claims to have stolen 500GB (GigaBytes) of sensitive and financial data, although the UK operator has yet to confirm this.

According to the FBI, Black Basta is a ransomware-as-a-service (RaaS) group that was first identified in April 2022 and is known to have targeted over 500 private industry and critical infrastructure entities, including healthcare organizations, in North America, Europe, and Australia (e.g. Ascension, Capita, Rheinmetall, Hyundai’s European division and the American Dental Association).

In this case, the ransomware group claims to have compromised part of BT’s Conferencing platform and extracted 500GB worth of data in the process, which they say includes financial and organizational data, users’ data and personal docs, NDA documents, confidential information, and more (screenshots and folder listings have been posted online as evidence).

Advertisement

However, in a statement given to Bleeping Computer, BT would only confirm that an “attempt” was made to compromise the aforementioned platform and are still assessing the situation.

A BT Group spokesperson said:

“We identified an attempt to compromise our BT Conferencing platform. This incident was restricted to specific elements of the platform, which were rapidly taken offline and isolated.

The impacted servers do not support live BT Conferencing services, which remain fully operational, and no other BT Group or customer services have been affected.

We’re continuing to actively investigate all aspects of this incident, and we’re working with the relevant regulatory and law enforcement bodies as part of our response.”

The ransomware gang has threatened to leak the stolen data next week, unless of course they can convince BT to pay. The FBI and CISA has previously indicated that the gang is believed to have collected at least $100 million (£78m+) in ransom payments from over 90 victims until November 2023.

Share with Twitter
Share with Linkedin
Share with Facebook
Share with Reddit
Share with Pinterest
Mark-Jackson
By Mark Jackson
Mark is a professional technology writer, IT consultant and computer engineer from Dorset (England), he also founded ISPreview in 1999 and enjoys analysing the latest telecoms and broadband developments. Find me on X (Twitter), Mastodon, Facebook, BlueSky, Threads.net and .
Search ISP News
Search ISP Listings
Search ISP Reviews
Comments
9 Responses

Advertisement

  1. Avatar photo anonymous says:

    “We go over now, live, to our BT correspondent, BT IVOR”

    Come on BT Ivor, give us the spin 🙂

    1. Avatar photo Ad47uk says:

      LOL,

      Could not happen to a better company. Not that it is a good thing, this is the problem with us doing more and more online, having to register for this and that. If a large company like BT can;t keep data safe, who the hell can?

      This is why I will not get things like loyalty cards that I don’t really need.

  2. Avatar photo binary says:

    Ransomware is a huge problem for any and all businesses and organisations that hold a significant amount of valuable data.

    One wonders about all the cases we don’t know about, either because the ‘victim’ company has swept it under the carpet, or don’t even know about their systems having been compromised (though the latter is less ransomware, more just bulk theft of data).

  3. Avatar photo Nigel says:

    Highly doubt this considering BT are probably one of the best cyber security firms in the industry

    1. Avatar photo Reza says:

      Indeed

    2. Avatar photo Nate says:

      Just because they’re one of the best doesn’t make them immune to cyber attacks, jeez.

    3. Avatar photo V says:

      “Highly doubt this considering BT are probably one of the best cyber security firms in the industry”

      Citation needed.

  4. Avatar photo GimmeHopeItsAllWorthIt says:

    pmsl. “one of the best in the industry..”
    That dosent make them immune to anything.. The way services are stacked these days or how they leverage their own cloud infra or their links to their partners clouds means there are lots of endpoints to pick away at and/or personnel to compromise. it only takes one small gap in the armour and thats it, there have also been a few zerodays announced, which makes me believe this to be credible.. T-mobile got hit states-side too.

  5. Avatar photo GK says:

    If this happens to BT, I can only imagine how the security posture of smaller telcos are.

Leave a Reply

Your email address will not be published. Required fields are marked *

NOTE: Your comment may not appear instantly (it may take several hours) due to static caching or random moderation checks by the anti-spam system.
Javascript must be enabled to post (most browsers do this automatically)

Privacy Notice: Please note that news comments are anonymous, which means that we do NOT require you to enter any real personal details to post a message. By clicking to submit a post you agree to storing your comment content, display name, IP, email and / or website details in our database, for as long as the post remains live.

Only the submitted name and comment will be displayed in public, while the rest will be kept private (we will never share this outside of ISPreview, regardless of whether the data is real or fake). This comment system uses submitted IP, email and website address data to spot abuse and spammers. All data is transferred via an encrypted (https secure) session.

NOTE 1: Sometimes your comment might not appear immediately due to site cache (this is cleared every few hours) or it may be caught by automated moderation / anti-spam.

NOTE 2: Comments that break our rules, spam, troll or post via known fake IP/proxy servers may be blocked or removed.
Cheap BIG ISPs for 100Mbps+
Community Fibre UK ISP Logo
150Mbps
Gift: None
Vodafone UK ISP Logo
Vodafone £23.00
150Mbps
Gift: None
Virgin Media UK ISP Logo
Virgin Media £23.50
132Mbps
Gift: None
Plusnet UK ISP Logo
Plusnet £25.99
145Mbps
Gift: None
NOW UK ISP Logo
NOW £26.00
100Mbps
Gift: None
Large Availability | View All
Cheapest ISPs for 100Mbps+
BeFibre UK ISP Logo
BeFibre £19.00
150Mbps
Gift: None
Gigaclear UK ISP Logo
Gigaclear £19.00
300Mbps
Gift: None
Community Fibre UK ISP Logo
150Mbps
Gift: None
Hey! Broadband UK ISP Logo
150Mbps
Gift: None
Vodafone UK ISP Logo
Vodafone £23.00
150Mbps
Gift: None
Large Availability | View All
The Top 15 Category Tags
  1. FTTP (6107)
  2. BT (3674)
  3. Politics (2756)
  4. Business (2459)
  5. Openreach (2430)
  6. Building Digital UK (2352)
  7. Mobile Broadband (2178)
  8. FTTC (2090)
  9. Statistics (1933)
  10. 4G (1838)
  11. Virgin Media (1793)
  12. Ofcom Regulation (1604)
  13. Fibre Optic (1480)
  14. Wireless Internet (1471)
  15. 5G (1433)
Promotion
Sponsored

Copyright © 1999 to Present - ISPreview.co.uk - All Rights Reserved - Terms , Privacy and Cookie Policy , Links , Website Rules , Contact
Mastodon