Data of more than 6,900 people fell into the hands of malefactors.
Sargent & Lundy, a Chicago-based construction and engineering company that has designed hundreds of power plants in the US, has been the victim of a ransomware attack attributed to the Black Basta group. According to experts, the data leak occurred on October 15, when the attackers managed to steal a huge amount of personal data of employees and customers from the company's systems.
The stolen information could include the names and social security numbers of more than 6,900 people, according to the law firm Turke & Strauss, which issued a breach notice on behalf of Sargent & Lundy.
The incident was of great interest to the US authorities, since the affected company is a government contractor working on critical national infrastructure projects and dealing with nuclear safety issues.
According to a memo describing what happened, obtained by CNN, researchers regularly checked hacker forums in an attempt to find data stolen during the attack. Recent reports indicate that Black Basta is increasingly using the QakBot Trojan to gain initial access and injecting ransomware into victims' IT systems almost immediately.