The attackers claim to have managed to hack the British postal service Royal Mail and seized 144 gigabytes of confidential data. Among the stolen information, they say, are personal customer information, important documents, databases, delivery addresses and even recordings of online meetings on Zoom.
The message about the attack was published on a popular forum, where data obtained illegally often appears. Cybercriminals claim to have gained access to a significant amount of sensitive information. The list includes personal customer data, various documents, a WordPress SQL database, recordings of online conferences, as well as information from Royal Mail’s MailChimp mailing list.
So far, the sample of published data contains a minimum of confirmations – only one email address from the allegedly stolen list. However, a team of researchers has checked some of the delivery addresses and confirmed their reality.
If the breach is confirmed, the risks to Royal Mail customers and partners would be enormous. They include both the theft of personal data and the compromise of partner negotiations, as recordings from Zoom conferences may contain private discussions of important internal processes and contracts. Access to the WordPress SQL database is a separate danger, as it potentially contains logins, passwords and other important information. This opens the way for further attacks on the company’s infrastructure.
This is not the first case of a hacker attack on Royal Mail. In January 2023, the company was attacked by the LockBit group, which demanded a ransom of $ 80 million. At that time, representatives of the service refused to pay, considering the amount “absurd”. That attack paralyzed part of the service’s international operations. Royal Mail, one of the oldest postal services in the world, stores a large amount of customer information and, as practice shows, remains a delicacy for cybercriminals.
107 
114 
113 