Lockheed Martin

In August 2022, Lockheed Martin, a global aerospace, defense, and security company, was targeted by the pro-Russian hacktivist group **Killnet** in a **distributed denial-of-service (DDoS) attack**. The group claimed to have not only disrupted Lockheed Martin’s online services but also **exfiltrated employee data** during the incident. However, Lockheed Martin publicly **denied the data breach**, asserting confidence in their cybersecurity measures and stating that no sensitive information was compromised. The attack, while primarily disruptive, raised concerns due to Killnet’s assertions about stolen employee records. If true, the breach could have exposed internal personnel data, including potentially sensitive details of current or former employees. The incident underscored vulnerabilities in critical defense contractors’ digital infrastructure, particularly amid geopolitical tensions. Though Lockheed Martin downplayed the severity, the alleged theft of employee data—if validated—would classify the attack as having **significant internal data exposure risks**, aligning with broader trends of cyber threats targeting high-profile defense and aerospace firms.

Source: https://siliconangle.com/2022/08/10/russian-hacking-group-claims-successfully-attacked-lockheed-martin/

TPRM report: https://www.rankiteo.com/company/lockheed-martin

"id": "loc621092125",
"linkid": "lockheed-martin",
"type": "Cyber Attack",
"date": "8/2022",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"

{'affected_entities': [{'industry': 'Aerospace, Defense, Security, Advanced '
                                    'Technologies',
                        'location': 'United States',
                        'name': 'Lockheed Martin',
                        'size': 'Large (116,000+ employees as of recent data)',
                        'type': 'Corporation'}],
 'attack_vector': 'DDoS',
 'data_breach': {'data_exfiltration': 'Claimed by Killnet, denied by Lockheed '
                                      'Martin',
                 'type_of_data_compromised': ['Employee data (claimed)']},
 'date_detected': '2022-08',
 'date_publicly_disclosed': '2022-08',
 'description': 'In August 2022, Lockheed Martin fell victim to a distributed '
                'denial of service (DDoS) attack from the hacktivist group '
                'Killnet. The group claimed to have also stolen employee data '
                'during the attack. Lockheed Martin denied these claims, '
                'asserting confidence in their system and data security.',
 'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
                                       'public claims of data theft',
            'data_compromised': ['Employee data (claimed by Killnet, denied by '
                                 'Lockheed Martin)']},
 'investigation_status': 'Ongoing (as of public disclosure; Lockheed Martin '
                         'denied data theft claims)',
 'motivation': ['Hacktivism', 'Disruption'],
 'response': {'communication_strategy': 'Public denial of data theft claims, '
                                        'assertion of confidence in security '
                                        'systems'},
 'threat_actor': 'Killnet',
 'title': 'Distributed Denial of Service (DDoS) Attack on Lockheed Martin by '
          'Killnet',
 'type': ['Distributed Denial of Service (DDoS)', 'Data Theft (claimed)']}