Hackers Breached UK Pension Safety Fund, Stole Worker Knowledge

Hackers obtained information on some workers of the UK’s Pension Safety Fund after exploiting a third-party information switch service, in line with a fund spokesperson.

The Pension Safety Fund manages £39 billion of belongings for its 295,000 members, in line with its web site. The fund protects folks with an outlined profit pension when an employer turns into bancrupt. By exploiting the Go Anyplace switch service, intruders compromised some worker information, Jenny Peters, a spokesperson for the fund, stated in a press release.

The hackers had been in a position to entry the among the fund’s information by way of GoAnywhere, which it makes use of for some safe information switch, Peters stated. The stolen info “was not associated to our members or pensioners,” she stated.

Affected workers had been supplied help within the type of an Experian monitoring service.

The ransomware gang Cl0p on Thursday claimed it had focused the group. The Cl0p group revealed a publish on its web site itemizing the Pension Safety Fund as one in every of its latest victims. The gang is thought for utilizing ransomware to encrypt its victims’ computer systems to allow them to’t be accessed, then demanding cost to unlock the recordsdata, whereas on the similar time threatening to publish stolen info on-line.

GoAnywhere developer Fortra disclosed in early February that hackers had exploited a software program vulnerability in its information switch product. The Cl0p gang claimed it had exploited the safety gap in GoAnywhere to steal information from over 130 organizations, in line with the expertise information web site Bleeping Pc. A consultant for Fortra didn’t instantly reply to a request for remark.

Group Well being Techniques Inc., a US health-care supplier, was one of many victims. It stated in a submitting with the Securities and Trade Fee that the GoAnywhere hack had uncovered affected person information and estimated that roughly 1 million folks could have been affected.

Cl0p, whose members are stated to be Russian-speaking, has been some of the prolific ransomware gangs lately, extorting a whole bunch of tens of millions of {dollars} from its victims, in accordance the cybersecurity agency Pattern Micro Inc.

{Photograph}: Crimson mild illuminates the keys of a laptop computer laptop. Photograph credit score: Andrey Rudakov/Bloomberg

Copyright 2023 Bloomberg.

Matters
Cyber