Ray calls for credit for the second cyber attack Jaguar Land Rover in six months

Digest opened free editor

Rola Khaleda, FT editor, chooses her favorite stories in this weekly newsletter.

One of the infiltrators called himself “Rai” claimed that he had violated Jaguar Land Rover for the second time in only six months, in a move that led to the stopping of the production of all auto vehicles in the UK.

English -speaking infiltrators claimed responsibility for the attack late on Tuesday evening by publishing a screenshot of what the JLR internal data is on MaitGAGE App Telegram.

“(Gang), this is very easy,” read The Post, which was sent to more than 50,000 subscribers on Telegram channel.

Internet experts say they believe that “Ray” is the same person previously associated with the Hacker Helcat group, which she claimed to have been violated JLR In March and to steal secret data. JLR refused to comment on the previous incident in March.

The organization that is used The same tactics as the mass “scattered spider” It was associated with prominent attacks on retailers including M & S, attacked by companies such as Telecom Giants Orange and Telefónica.

After the breach, JLR Production stop One of its vehicles in the United Kingdom from Monday after its systems were closed to respond to the Internet. Production has not been restarted and workers in affected plants are not restored at home.

“We are aware of the claims related to the last electronic accident, and we are continuing to investigate,” said a JLR spokesman. JLR refused to confirm whether Rey or Helcat are the responsible party.

Soon the Ray Publication, which claims responsibility for the attack on Telegram, is called “Scathed Lapsus $ Hunters 4.0”, with another user joke: “Where is my new car, Land Rover?”

The attacks follow a set of prominent violations of major companies in recent months, including cooperative, Harrods, Cantas.

Jake Moore, the international cybersecurity advisor at ESET, said that the nature of the JLR attack showed how small piracy groups were “confidently confident” from the lack of arrest, which added “additional salt in the wound” to the victims.

He added: “This group is after money and a bad reputation, and it is often successful.”

Eden Sinot, the main threat researcher in the United Kingdom Cyber ​​security The Sophos Group added, that infiltrators, often, are in the middle of adolescence to the early twenties, have carried out attacks on the names of large families across the sectors.

He said it was difficult for the authorities to dissolve groups, which were not structurally organized, such as traditional electronic criminal groups or the chairmanship of any single individual.

Sinnott added: “They are only doing these breaches for fun and size.”