FlagThis

Royal Mail Group has suffered a significant data breach, with a hacker known as GHNA leaking 144GB of sensitive data. The leaked information includes customer personally identifiable information (PII) such as names, addresses, postal codes, and shipping details, as well as internal communications and operational data. GHNA claims to have gained access through Spectos, a German-based data analytics and performance management firm that supplies services to Royal Mail. The exposed records also feature delivery route datasets, post office location information, and Mailchimp mailing lists. The company is currently investigating the breach.

The data breach is now under investigation. The investigation is underway to determine the full scope of the incident and its potential impact. Royal Mail is working with Spectos to investigate the issue and assess what impact there may be regarding their data. The investigation will also focus on whether the breach originated from a direct compromise of Royal Mail’s infrastructure or through the third-party vendor.

ImgSrc: mnwa9ap4czgf-u1

References :

• CyberInsider: Royal Mail Group Breach Exposes 144GB of Sensitive Customer Data
• hackread.com: Hacker leaks 144GB of sensitive Royal Mail Group data, including customer info and internal files, claiming access came via supplier Spectos. Investigation underway!
• The DefendOps Diaries: Explore the Royal Mail data breach and learn vital lessons in supply chain security and vendor management.
• BleepingComputer: Royal Mail investigates data leak claims, no impact on operations

Classification:

• HashTags: #DataBreach #RoyalMail #SupplyChain
• Company: Royal Mail Group
• Target: Royal Mail Group Customers
• Feature: Customer Data
• Malware: Infostealer
• Type: DataBreach
• Severity: Major