Wightlink

In February 2022, Wightlink, a UK-based ferry operator headquartered in Portsmouth, fell victim to a cyber-attack that compromised its back-office IT systems. The breach was executed by hackers, leading to the potential exposure of a limited number of information files. While the exact nature of the compromised data was not publicly detailed, the incident prompted Wightlink to immediately engage third-party cybersecurity specialists to conduct a thorough investigation and assess the extent of the damage. The attack disrupted internal operations, though there was no immediate evidence of widespread data theft or financial harm. The company took swift action to contain the breach and mitigate risks, but the incident highlighted vulnerabilities in its IT infrastructure. No reports suggested ransomware involvement or large-scale customer data leaks, and the primary impact appeared to be operational disruption and potential reputational damage due to the public disclosure of the attack.

Source: https://www.bbc.com/news/uk-england-hampshire-60705576

TPRM report: https://www.rankiteo.com/company/wightlink

"id": "wig314092125",
"linkid": "wightlink",
"type": "Cyber Attack",
"date": "2/2022",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"

{'affected_entities': [{'industry': 'Transportation (Maritime)',
                        'location': 'Portsmouth, UK',
                        'name': 'Wightlink',
                        'type': 'Ferry Operator'}],
 'data_breach': {'file_types_exposed': ['Information files']},
 'date_detected': '2022-02',
 'date_publicly_disclosed': '2022-02',
 'description': 'In February 2022, UK ferry operator Wightlink was hit by a '
                'cyber-attack. The ferry operator, based in Portsmouth, UK, '
                'had its back-office IT systems compromised by hackers. As a '
                'result, a small number of information files may have been '
                'compromised. Wightlink engaged third-party cybersecurity '
                'experts to investigate and assess the incident upon '
                'discovery.',
 'impact': {'data_compromised': 'A small number of information files',
            'systems_affected': ['Back-office IT systems']},
 'investigation_status': 'Under investigation by third-party cybersecurity '
                         'experts (as of disclosure)',
 'response': {'incident_response_plan_activated': True,
              'third_party_assistance': ['Cybersecurity experts '
                                         '(unspecified)']},
 'title': "Cyber-Attack on Wightlink's Back-Office IT Systems",
 'type': 'Cyber-Attack'}

Wightlink

C2K: Education Authority: cyber attack on IT system used in Northern Ireland schools

Cisco Talos Intelligence: Qilin Ransomware Uses Malicious DLL to Disable Nearly All EDR Solutions

GitHub, Next.js, Stripe and AWS: Hackers Compromised 700+ Next.js Hosts by Exploiting React2Shell Vulnerability