Adif

History

2020: Theft of data as a result of the attack of a virus racketeer

On July 25, 2020 it became known of an attack of a virus racketeer to the Spanish railway state company Adif which problems include management of railway infrastructure and collection of payment from operators. As a result of attack 800 Gbytes of data were stolen.

According to El Español, stand hackers from the REvil grouping behind cyber attack. On July 22, 2020 on their official site in the Darknet there was a publication which confirms replenishment of the list of the cracked systems by the new victim. Malefactors presumably stole 800 GB of data, however meanwhile it is unknown precisely by what method hackers managed to get access to servers.

REvil did not begin to disclose details concerning the stolen data. But, according to the screenshot published on their website it is possible to assume that they got access to confidential information of participants of the Adif system - e-mails, contracts given for an input in personal accounts.

Theft of 800 Gbytes of data of Adif

According to El Español, hackers still have access to files of Adif as vulnerability most likely was not eliminated. Moreover, hackers threaten to carry out one more attack. Adif reacted to news about the attack and noted:

Infrastructure did not suffer from the attack, we guarantee proper functioning of all our services. Adif, realizing that is the manager of critical infrastructure, such as operation of a railway system, considers cyber security as one of basic elements requiring complex approach.

Hackers of REvil continue to attack the large companies, among the new victims - the American and Canadian enterprises. On June 11, 2020 grouping also made an attack to the American developer of robotics Symbotic whose vulnerability of systems allowed hackers to steal confidential data.^[1]

Notes