Aircraft leasing giant AerCap has confirmed falling victim to ransomware after an emerging cybercrime gang claimed responsibility for the attack.
The intrusion, the company said in a Form 6-K filing with the US Securities and Exchange Commission, occurred on January 17.
“We have full control of all of our IT systems and to date, we have suffered no financial loss related to this incident,” the lessor told the SEC.
AerCap also noted that it had notified law enforcement immediately after identifying the attack and that its investigation into the incident has yet to determine if any data was compromised or exfiltrated.
While the company shared no details on the attackers, an emerging ransomware group named ‘Slug’ has taken responsibility for the incident, listing AerCap on its leak site.
Slug claims to have stolen roughly one terabyte of data from the aircraft lessor, threatening to progressively leak the information unless a ransom is paid. Within two weeks, the group says, all the stolen data will be released publicly.
At the moment, Slug’s leak site only has AerCap listed as a victim.
Headquartered in Dublin, Ireland, AerCap Holdings is the largest aviation leasing company worldwide, with thousands of owned, on order, or managed aircraft, engines, and helicopters, serving more than 300 customers in 80 countries.
One of the largest purchasers of aircraft and aircraft engines, the company has offices in Amsterdam, Dubai, London, Miami, Shanghai, Shannon, and Singapore, and representative offices in Seattle and Toulouse.