"Willis Lease Finance Corp Discloses Cyberattack"

Aircraft parts dealer Willis Lease Finance Corporation (WLFC) has recently informed the US Securities and Exchange Commission that it fell victim to a cyberattack.  According to the company, the incident was flagged on January 31, when unauthorized activity was detected on portions of its systems.  The company noted that an investigation into the nature and scope of the incident was launched with the assistance of leading third-party cybersecurity experts, and it took steps to contain, assess, and remediate the activity, including taking certain systems offline.  According to WLFC, the incident was fully contained by February 2, and no unauthorized activity has since been detected.  WLFC also noted that its investigation has yet to determine “what data has been exfiltrated or otherwise impacted” or “the complete nature, scope, and impact” of the attack.  While WLFC did not say what type of cyberattack it fell victim to, the Black Basta ransomware gang has claimed responsibility for the incident, adding the company to its Tor-based leak site.  Black Basta claims to have exfiltrated over 900 GB of data from WLFC, including sensitive company data, employee and customer information, shared folders, confidential documents, and more, threatening to release it publicly within six days.

SecurityWeek reports: "Willis Lease Finance Corp Discloses Cyberattack"