Skip to main content

The Royal Mail ransomware attack

The Royal Mail ransomware attack left packages in limbo, and the organisation scrambling. We’ve found out what happened, and why this is important for businesses.

What happened to Royal Mail?

In January, Royal Mail was targeted by a ransomware attack, where their files and data were encrypted by the hacking group LockBit. This meant that Royal Mail were unable to access their data. Negotiations were started with LockBit; however, Royal Mail refused to pay the amount requested by the group to have their access to their files restored, calling the price ‘absurd’. As a result, overseas deliveries were halted and only resumed at the end of February. LockBit claimed to publish the stolen data online a couple of days later.

Why is this important for businesses?

The Royal Mail ransomware attack isn’t just important for businesses to be aware of when they ship and receive products internationally; it’s also important for businesses to think about their cyber security. The ransomware incidents that hit the news are often targeted attacks, with huge industries and organisations as the victims; the NHS and North East Universities, for example.

However, the majority of cyber attacks target small to medium enterprises (SMEs). This 2022 report found that, ‘An average employee of a small business with less than 100 employees will receive 350% more social engineering attacks than an employee of a larger enterprise’. The report also found that 51% of these social engineering attacks involved phishing, where malware infected links were used to gain access to victims machines and operations.

What should businesses do about cyber attacks?

Businesses shouldn’t wait until a cyber attack happens; they should expect it to happen. According to the report from Barracuda, ‘SMBs are an attractive target for cybercriminals because collectively they have a substantial economic value and often lack security resources or expertise.’ Barracuda’s report also states that, ‘60% of small businesses will close their doors six months after a security breach. With 43% of online attacks targeting small businesses, the cost of doing nothing can be too high.’ As such, the best offensive tactic against cyber attacks is a good defence. 

When it comes to security, businesses should consider how to improve their technology, so that their systems can stand up to cyber attacks, and how to improve the education of themselves and their employees, so that users are prepared for cyber attacks. 

The cyber security that businesses use should be multi-layered, so that the organisation isn’t dependent on a single form of protection. This should include a high quality anti-virus software, so that threats are identified and removed safely. Multi-factor authentication, so that anyone who attempts to gain access to your systems needs multiple separate pieces of information. Firewalls, and Intrusion Detection Software (IDS) can also be used to protect your network, and Backup & Disaster Recovery means that your data is protected if the worst happens.

To help educate your staff, we’d recommend U-Secure. This product provides cyber-security training and management by sending ten minute videos directly to your employees to teach and then test their knowledge on subjects like phishing, ransomware and social engineering. The results are then recorded for your organisation so you can identify which employees are most at risk, and who needs more help when it comes to understanding these kinds of scams. U-Secure also offers email phishing simulations with reporting, business policy centralisation, distribution and adoption management and breach monitoring.

Not sure where to start with security?

Businesses don’t need to struggle with cyber security alone. Get in touch with Transcendit for a demo of U-Secure, and have a 14 day trial to see if it works for your organisation. Transcendit can also review your network security to ensure that your business is protected against cyber attacks. 

Give us a call on 0191 482 0444 to get your cyber security sorted


The Transcendit Way

Transcendit understand that when you choose to work with us, whether we're taking care of your IT, app or web development, you're trusting us with part of your business. So whether we're looking after your computers, phone systems or servers we always do things 'the Transcendit way'.

The whole of our team adhere to the same values, beliefs and policies - the principles that were written when Transcendit first formed in 2000. Whether you come to us for cloud services or recovery backup you can be confident that you'll always receive the same excellent service.

The Transcendit way outlines how we do business; following the same straightforward principles with every client and customer, regardless of how big or small they may be.

That means we get to know you and your business. We offer you a friendly, professional and efficient service, and we'll always be honest with you.
We understand that not everybody speaks fluent IT, so we try to explain things in a way that is simple and clear. We always spend as much time as is necessary explaining things to you.
If you need to talk to us about something, no matter how insignificant, we are only ever a phone call away – and we’re never too busy to make you a cup of tea and have a sit down with you in person.
We understand how frustrating it can be when things are late. When we schedule an appointment with you, we are there when you’re expecting us. If something prevents us from getting there, we always call you in advance to let you know.
Sometimes things can go wrong, but we never lie to you or try to cover something up. If things go askew we tell you what’s happened and how we plan to prevent it affecting your business.
We want you to continuously benefit from working with us. We regularly discuss your business and make suggestions for improving systems and processes wherever we can – but we never try to push you into a purchase.
When we quote a fixed price, that's always the amount we charge – you won’t find any nasty surprises on a bill from us. If you are paying by time and materials, we inform you if our approximations could change.
We understand the importance of privacy for your business and your customers. We respect the confidentiality of your data, and we will never pass on your information to third parties.
We appreciate it when you take the time to give us feedback. A system called CustomerSure records our client's responses, so you can trust that our reviews are from real people.
Find out what they're saying here.
The service from Transcendit is beyond first class. Every time i have had to use it, all staff have been so patient and helpful with me as i am the antithesis of tech savvy. I have expressed my satisfaction with our factory leaders Jim and Steve and had asked them to pass on my sincere thanks for your help. Aaron today was exceptional at walking me through the pre-migration process from Citrix to Azure. I wish all companies that I deal with provided this first class service. Peter Howlett, Director of Design, George Smith

Based on 12075 reviews our customers rate us 9.8/10. Reviews and ratings by Customersure. 09-October-2024

Transcendit are proud sponsors of CHUF, the Children's Heart Unit Fund.

Transcendit is a Living Wage employer
Transcendit is a Microsoft Gold certified partner
VMWARE partner
Vipre partner
IPCortex partner
WithSecure partner
DELL partner
Barracuda partner
Veeam partner
N-Able partner