Hackers are selling access to Biochemical systems at Oxford University Lab

Hackers have broken into the biochemical systems of an Oxford University lab where researchers are working on the study of Covid-19.

Hackers compromised the systems at one of the most advanced biology labs at the Oxford University that is involved in the research on the Covid-19 pandemic.

The news was disclosed by Forbes and the Oxford University confirmed the security breach that impacted the Division of Structural Biology (known as “Strubi”).

“Oxford University confirmed on Thursday it had detected and isolated an incident at the Division of Structural Biology (known as “Strubi”) after Forbes disclosed that hackers were showing off access to a number of systems.” reported Forbes. “These included machines used to prepare biochemical samples, though the university said it couldn’t comment further on the scale of the breach.”

The University notified the authorities, including the National Cyber Security Center (NCSC) and the U.K. Information Commissioner’s Office.

“We have identified and contained the problem and are now investigating further,” an Oxford University spokesperson said. “There has been no impact on any clinical research, as this is not conducted in the affected area. As is standard with such incidents, we have notified the National Cyber Security Center and are working with them.”

The U.K. ICO confirmed that not patient data was compromised as a result of the security breach.

Forbes first reported the news and revealed it received the news of the breach by Hold Security chief technology officer Alex Holden. Holden provided screenshots showing interfaces for lab equipment, it also speculated that attackers were inside the Lab infrastructure on February 13 and February 14, 2021.

Once breached the biochemical systems of an Oxford University lab the attackers were in the position of stealing research data or sabotage the equipment.

The illustrious professor Alan Woodward speculate the involvement of a cybercrime organization, instead a state-sponsored operation, because the hackers were attempting to sell access to the Lab to third parties.

According to Holden the crew is highly sophisticated and has been privately selling stolen data from a number of organizations. Its customers are also APT groups that could use the data to targete the compromised organizations.

“He noted that the hackers spoke Portuguese. Some of the group’s other victims include Brazilian universities, Holden added, and they also use ransomware to extort some victims.” reported Forbes.

Investigation is still ongoing.

If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, Oxford University lab)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.