Claudia Glover reports:
Save the Children appears to have been hacked by the Chinese data extortion gang BianLian, according to data posted to the latter’s victim blog. Though it does not mention the charity by name, the cybercrime organisation claims to have stolen up to 8GB of files from an international NGO “employing over 25,000 staff and operating in 116 countries”, a description experts have said fits the profile of Save the Children.
[….]
Save the Children confirmed that an outside party had obtained unauthorised access to part of its network, though it stressed that there had been no operational disruption as a result. “We are working hard with external specialists to understand what happened and what data was impacted, so we can take all the appropriate next steps,” a spokesperson told Tech Monitor. “Our systems are also secured, and we are confident in the ongoing integrity of our IT infrastructure.”
Read more at TechMonitor.
Note: BianLian has been variously described as a Chinese gang, a Russian gang, and a gang with a Romanian/Moldovian operator. DataBreaches does not know the correct description, but you can read CISA’s May 2023 advisory on the gang at CISA.gov