An “unknown actor” was behind the data breach, according to a US-based branch of Israel’s Elbit Systems
An Israeli arms contractor specializing in unmanned aerial vehicles (UAVs) fell victim to a hack that impacted nearly 400 employees, the company said, noting that sensitive personal data was likely stolen from its US branch, Elbit America.
The firm announced the cyber attack in a notification to authorities in Maine earlier this month, as was first reported by TechCrunch on Monday, revealing that 369 staffers were swept up in a hack that occurred in June.
“On June 8, 2022, someone attempted to interfere with Elbit America’s cyber operations. We immediately shut down our network and took steps to secure our environment,” the company said in a letter to those potentially affected by the hack.
After hiring a “leading cybersecurity firm” to investigate, Elbit said it determined that “an unknown actor gained access to and obtained certain data” from its network, including “individuals’ names, addresses, Social Security numbers, dates of birth, direct deposit information, and ethnicity.”
The company offered few other details about the cyber breach, but said it did not believe any personal information had been “misused as a result of this incident.”
Read more
The Texas-based subsidiary did not name any actors believed to have carried out the hack, though cybersecurity blogger Eduard Kovacs observed that a ransomware gang known as ‘Black Basta’ boasted of an attack on Elbit Systems in late June, not long after the company says it was breached. The group reportedly posted a handful of stolen documents on its website at the time, including payroll information and a non-disclosure agreement.