"US Rail and Locomotive Company Wabtec Hit With LockBit Ransomware"

Wabtec Corporation is an American manufacturer of products for locomotives, freight cars, and passenger transit vehicles. The company employs around 25,000 people worldwide and has 50 facilities. According to a statement released by Wabtec Corporation, threat actors infiltrated the company network and infected internal systems as early as March 15, 2022. The company discovered the unusual activity on June 26 and initiated an investigation into the security incident, which indicated that unauthorized parties had accessed some systems carrying sensitive information and that a certain amount of data was stolen from the Wabtec Corporation environment. The only indication given by the company of an extortion attack is the confirmation that the stolen data was later uploaded on the threat actor's leak site, a site used by ransomware groups and extortion gangs to publicize the availability of stolen data from victims. Wabtec Corporation determined on November 23, 2022, that personal information was contained in the data exfiltrated by the intruders. In August 2022, the LockBit ransomware group added Wabtec Corporation to its list of victims and uploaded stolen data samples as evidence of the hack on its Tor leak site. This article continues to discuss Wabtec Corporation's disclosure of a data breach after it was hit with a LockBit ransomware attack.

Security Affairs reports "US Rail and Locomotive Company Wabtec Hit With LockBit Ransomware"