An ancient Windows 7 PC is being blamed for cyberattack against UK armed forces supplier

LockBit compromised Zaun through a Windows 7 device

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Zaun, a UK company that supplies military bases with high-security fencing, suffered a partially successful ransomware attack, with the hackers’ apparent point of entry a PCendpointrunning the obsoleteWindows 7software.

In a statement, Zaun admitted the LockBit threat actor managed to compromise the company’s infrastructure and steal roughly 10GB of data.

It did not manage to deploy theransomwareencryptor, and the company also said that the attackers didn’t take any sensitive information.

Staying safe

“We do not believe that any classified documents were stored on the system or have been compromised,” the announcement reads, adding that LockBit appears to have published the stolen data on the dark web.

The National Cyber Security Centre (NCSC) and the UK’s Information Commissioner’s Office (ICO) were both notified of the incident.

Ransomware is a relatively novel method of cybercrime that’s only been around for a couple of years, but since hackers can extort the victims for millions of dollars, it quickly rose to fame. The wider cybersecurity community, as well as law enforcement, have since been urging organizations to keep their endpoints secure, not just by enforcing strong password policies and multi-factor authentication, but also by regularly deploying patches and updates.

LockBit ransomware has cost victims millions in the US alone>Data breached at LA Housing Authority after ransomware attack>These are the best malware removal tools at the moment

When software reaches its end-of-life date, likeWindows 7 did back in early 2020, it no longer receives updates. Hence, if someone for example discovers a high-severity flaw that grants remote code execution capabilities, the software’s makers will not release a patch and users will be left at risk. For Windows 7,Microsoftoffered Extended Security Updates for sale, but the service was shut down in early 2023. Mainstream support ended in 2015, and the OS’ end of life was in January 10, 2020.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

LockBit is one of the largest and most active ransomware operators around, which has so far assaulted dozens of organizations around the world.

Via:TheRegister

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Cisco issues patch to fix serious flaw allowing possible industrial systems takeover

Washington state court systems taken offline following cyberattack

Google TV will require more RAM for future upgrades – which might leave older TVs and streaming boxes behind