Security News > 2023 > November > British Library begins contacting customers as Rhysida leaks data dump
The Rhysida ransomware group has published most of the data it claimed to have stolen from the British Library a month after the attack was disclosed.
The Register has not examined any of the data posted online, but a cursory perusal of the file trees leaked to Rhysida's website appears to show data related to various British Library departments, functions, and stakeholders.
"Not-sold data was uploaded, data hunters, enjoy."
Richard Cassidy, Field CISO EMEA at Rubrik, told us: "With cyberattacks such as the recent British Library attack, where data has allegedly been stolen, it is crucial to understand that ransomware groups like Rhysida are no longer just hackers, but are savvy business operators."
In an update posted to its still-floored website on Monday evening, the British Library confirmed Rhysida's earlier claims that data had been stolen and advised customers to change passwords if they had reused them elsewhere.
After re-iterating its ongoing work with cybersecurity experts to investigate and remediate the incident, the library issued an apology to its customers, adding that it hopes the additional information about the risk to data would offer customers "a clearer picture of the situation as it stands."