Summary: The Royal Mail Group has reportedly experienced a significant data breach, with 144GB of sensitive data being leaked on a cybercrime forum, including customer information and internal communications linked to their analytics partner, Spectos. This incident raises concerns about the company’s data protection practices and their reliance on third-party vendors. The breach may lead to scams or identity theft for affected customers and puts regulatory scrutiny on Royal Mail’s handling of private data.
Affected: Royal Mail Group, Spectos
Keypoints :
- 144GB of sensitive internal files, customer PII, and marketing data leaked.
- The hacker, known as GHNA, is known for targeting high-profile organizations and selling access to their data.
- Royal Mail’s prior cybersecurity issues include a ransomware attack by the LockBit group in early 2023.
- The breach raises questions about Spectos’ involvement and Royal Mail’s vendor management practices.
- Investigation into the breach is ongoing, with potential risks for affected customers including scams and identity theft.
Source: https://hackread.com/hacker-leaks-royal-mail-group-data-supplier-spectos/