"Ransomware Disruption at The Guardian to Last at Least a Month"

A ransomware attack on The Guardian at the end of 2022 will continue to cause operational issues for several more weeks, according to the company.  Hackers conducted a cyberattack against The Guardian on December 20, forcing the London-based newspaper’s owner, the Guardian Media Group, to order staff to work from home.  However, a new internal note from the group’s CEO, Anna Bateson, sent at the start of the new year, warned of more disruption to come.  According to the CEO, as a result of the steps they took to secure their network, a number of key systems have been taken offline and remain unavailable.  The CEO noted that to reduce strain on their networks and help the enterprise tech, ESD, and other involved teams focus on the most essential fixes, everyone must work from home until at least Monday, January 23, in the UK, US, and Australia.  That will make it around a month after the attack struck that staff, including journalists, will be forced to work remotely.  It is unclear what internal systems are impacted and if the threat actors were able to steal any data before being discovered.  The report noted that Wi-Fi systems at the groups’ headquarters were knocked out, while it appears as if customer service phone lines are also affected.  So far, no threat group has claimed responsibility for the attack or posted data to a leak site.

Infosecurity reports: "Ransomware Disruption at The Guardian to Last at Least a Month"