Data Security, Supply chain

Cyberattack refuted by Safran Group after alleged data leak

Hacking the security. The threat of information leakage and the security of the system. Red open padlock among closed black ones. Close the gap, fix the problem.

Major French multinational aerospace, defense, and security corporation Safran Group has denied being impacted by a cyberattack, emphasizing that allegedly stolen sensitive data from its systems had been inadvertently exposed by a third-party provider, reports Cybernews.

While Safran Group had a dataset with over a million lines of data including customer names, emails, ERP references, and other order details stolen and leaked by a threat actor, such a database only had "non-strategic" information, according to the firm, which reported no operational disruptions or adverse security impact from the incident.

"This exposure was identified and halted rapidly. Safran has since taken all appropriate actions with the relevant authorities and informed its partners," said a Safran Group representative.

Further analysis of the exposed data by the Cybernews research team revealed that most of the records referenced Safran Group as a customer, indicating the compromise of another company in the supply chain. Despite the most recent incident being a third-party breach, Safran Group, like other defense firms, has long been an attractive target for advanced persistent threat operations.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

You can skip this ad in 5 seconds