Telecommunications giant Lumen Technologies has revealed in a filing to the Securities and Exchange Commission (SEC) that it has been hit by two cyber security incidents, one of which is a ransomware attack.
While the company did not disclose the type of ransomware involved, it did confirm that it has impacted a limited number of servers that support a segmented hosting service. The incident is also “currently degrading the operations of a small number of the Company’s enterprise customers”.
Lumen has taken several steps to address the attack, including implementing enhanced security software that led to the discovery of a second cyber security intrusion.
In this second incident, attackers were able to access a limited number of the company’s internal information technology systems, where they conducted reconnaissance, installed malware and extracted a relatively limited amount of data.
The company has launched an investigation into the incident with the help of forensic experts and has notified law enforcement authorities and impacted customers.
However, it also states that, based on its ongoing investigations and information known at this time, it does not believe the incidents will have a material adverse impact on its ability to serve its customers or its business, operations or financial results.
The disclosure of the incidents highlights the continued threat of ransomware and cyber security attacks for businesses, with Lumen joining a growing list of high-profile victims that have been targeted in recent years.
It also emphasizes the importance of having effective security measures in place and responding quickly and comprehensively to any incidents that do occur.
