The airplane maker firm Bombardier was targated in a ransomware attack in February 2021.
The attackers infiltrated the computer network of Bombardier by exploiting vulnerability in the sharing software Accellion.
The Clop Ransomware group took the responsibility of the attack and published some of the stolen classified data online.
Source: https://www.cybersecurity-insiders.com/ransomware-attack-on-airplane-maker-bombardier/
TPRM report: https://scoringcyber.rankiteo.com/company/bombardier
"id": "bom19502322",
"linkid": "bombardier",
"type": "Ransomware",
"date": "02/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Aerospace',
'name': 'Bombardier',
'type': 'Company'}],
'attack_vector': 'Exploit vulnerability in software',
'data_breach': {'data_exfiltration': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Classified data'},
'date_detected': 'February 2021',
'description': 'The airplane maker firm Bombardier was targeted in a '
'ransomware attack in February 2021. The attackers infiltrated '
'the computer network of Bombardier by exploiting a '
'vulnerability in the sharing software Accellion. The Clop '
'Ransomware group took responsibility for the attack and '
'published some of the stolen classified data online.',
'impact': {'data_compromised': 'Classified data',
'systems_affected': 'Computer network'},
'initial_access_broker': {'entry_point': 'Accellion sharing software '
'vulnerability'},
'motivation': 'Financial gain',
'post_incident_analysis': {'root_causes': 'Exploitation of vulnerability in '
'Accellion sharing software'},
'ransomware': {'data_exfiltration': True, 'ransomware_strain': 'Clop'},
'threat_actor': 'Clop Ransomware group',
'title': 'Bombardier Ransomware Attack',
'type': 'Ransomware',
'vulnerability_exploited': 'Accellion sharing software'}