A British transport firm was forced to close after 158 years thanks to a single easily-guessed password.
According to a recent episode of BBC's Panorama, Northamptonshire-based KNP - formerly Knights of Old - was hit by a ransomware demand that it couldn't pay.
The resulting incident saw the company fold, putting 700 people out of work and highlighting the devastating real-world impact of cyber attacks.
The hack was the work of the Akira ransomware group, which gained access by guessing one employee’s weak password. Director Paul Abbott said he hadn't told the employee concerned that it had been their error that led to the firm's closure.
"Would you want to know if it was you?" he said.
The hackers demanded a ransom believed to have been as much as £5 million.
"If you're reading this it means the internal infrastructure of your company is fully or partially dead…Let's keep all the tears and resentment to ourselves and try to build a constructive dialogue," the ransom note read.
KNP’s insurers immediately sent in a cyber crisis team, which found that all of the company’s data had been encrypted and that its servers, backup, and disaster recovery systems had all been locked. Unable to pay the ransom, the company was forced to call in administrators.
"The resurfacing of the KNP ransomware incident through the BBC Panorama documentary is a pertinent reminder of the devastating real-world consequences of cyber crime - not only in terms of data loss, but in terms of the livelihoods that can be severely affected by a single compromised password," said Anne Cutler, cybersecurity expert at Keeper Security.
"That simple breach precipitated the complete collapse of a 158-year-old business, costing hundreds of jobs and leaving lasting damage. What’s especially sobering about this story is not that it was unique in any significant way, but rather, that it was typical."
Password security still has a long way to go
Password security has been a key battleground for cybersecurity experts in recent years, with research showing chronically lax practices among consumers and enterprises alike.
A study from Kaspersky last year, for example, analyzed 193 million compromised passwords available on the dark web, finding that 45% could be guessed by hackers within a minute.
"The destruction of KNP, formally Knights of Old, is a truly sad cybersecurity tale,” Tim Ward, CEO and co-founder of Redflags from ThinkCyber.
“But it is also a tale of simple cyber hygiene issues having a critical impact.”
"We have to take the human factor of security more seriously, or we will see more and more of these sad tales,” Ward added.
In a recent government survey, 43% of UK businesses and 30% of charities reported having experienced a cybersecurity breach or attack in the last 12 months - around 612,000 businesses and 61,000 charities in total.
Cutler noted that a common misstep for many organizations is that they assume they wouldn’t be “worthwhile targets” for cyber criminals. The reality is that any target is viable, she added.
“As this Panorama documentary makes clear, ransomware is not just being deployed on major corporations - it’s targeting the resilience of supply chains, service providers, schools, charities, and local employers like KNP."
Make sure to follow ITPro on Google News to keep tabs on all our latest news, analysis, and reviews.
MORE FROM ITPRO
- Nearly half of MSPs admit to having a ransomware kitty
- US healthcare data breaches are out of control
- The ransomware boom shows no signs of letting up
-
Trump's AI executive order could leave US in a 'regulatory vacuum'News Citing a "patchwork of 50 different regulatory regimes" and "ideological bias", President Trump wants rules to be set at a federal level
-
TPUs: Google's home advantageITPro Podcast How does TPU v7 stack up against Nvidia's latest chips – and can Google scale AI using only its own supply?
-
LastPass hit with ICO fine after 2022 data breach exposed 1.6 million users – here’s how the incident unfoldedNews The impact of the LastPass breach was felt by customers as late as December 2024
-
Researchers claim Salt Typhoon masterminds learned their trade at Cisco Network AcademyNews The Salt Typhoon hacker group has targeted telecoms operators and US National Guard networks in recent years
-
Trend Micro issues warning over rise of 'vibe crime' as cyber criminals turn to agentic AI to automate attacksNews Trend Micro is warning of a boom in 'vibe crime' - the use of agentic AI to support fully-automated cyber criminal operations and accelerate attacks.
-
Cyber budget cuts are slowing down, but that doesn't mean there's light on the horizon for security teamsNews A new ISC2 survey indicates that both layoffs and budget cuts are on the decline
-
NCSC issues urgent warning over growing AI prompt injection risks – here’s what you need to knowNews Many organizations see prompt injection as just another version of SQL injection - but this is a mistake
-
Chinese hackers are using ‘stealthy and resilient’ Brickstorm malware to target VMware servers and hide in networks for months at a timeNews Organizations, particularly in the critical infrastructure, government services, and facilities and IT sectors, need to be wary of Brickstorm
-
AWS CISO Amy Herzog thinks AI agents will be a ‘boon’ for cyber professionals — and teams at Amazon are already seeing huge gainsNews AWS CISO Amy Herzog thinks AI agents will be a ‘boon’ for cyber professionals, and the company has already unlocked significant benefits from the technology internally.
-
15-year-old revealed as key player in Scattered LAPSUS$ HuntersNews 'Rey' says he's trying to leave Scattered LAPSUS$ Hunters and is prepared to cooperate with law enforcement
