The Globe and Mail reports in its Friday, May 24, edition that more than three weeks after a cybersecurity breach forced London Drugs to temporarily close its stores, the company acknowledged that sensitive employee data have been leaked. The Globe's Susan Krashinsky Robertson and Temur Darrani write that Empire and Indigo Books & Music have suffered similar attacks. The Globe says Russian malware group LockBit posted hundreds of files on the dark web on Thursday, after a deadline it set for London Drugs to pay a ransom had passed. That included files that appeared to contain financial and personal information about the company's employees such as sexual harassment complaints, immigration applications, relationship disclosures and termination letters. "London Drugs has been named by cybercriminals as a victim of exfiltration of files from its corporate head office, and we are aware that some of these exfiltrated files have now been released," said a company statement provided by spokesman Jessica Harcombe Fleming. London Drugs had previously said that it was not willing or able to pay the ransom that LockBit had demanded. Cyber threat analyst Brett Callow says the scale of the London Drugs leak is not unusual.
© 2024 Canjex Publishing Ltd. All rights reserved.