Source URL: https://www.theregister.com/2025/02/18/us_newspaper_publisher_exercises_linguistic/
Source: The Register
Title: US newspaper publisher uses linguistic gymnastics to avoid saying its outage was due to ransomware
Feedly Summary: Called it an ‘incident’ in SEC filing, but encrypted apps and data exfiltration suggest Lee just can’t say the R word
US newspaper publisher Lee Enterprises is blaming its recent service disruptions on a “cybersecurity attack," per a regulatory filing, and is the latest company to avoid using the dreaded R word.…
AI Summary and Description: Yes
Summary: The recent cybersecurity attack on Lee Enterprises, a major US newspaper publisher, has been linked to a suspected ransomware incident. This attack has disrupted critical business operations and drawn attention to the company’s cybersecurity practices, including their reliance on insurance policies for incident response.
Detailed Description: Lee Enterprises has recently disclosed significant service disruptions attributed to a cybersecurity attack, which they have indicated in regulatory filings may be related to ransomware. This incident highlights the growing trend of organizations avoiding the term “ransomware” in their official statements while still facing similar threats. Key points from the incident include:
– **Nature of the Attack**: The SEC filing indicated that “threat actors unlawfully accessed the company’s network,” effectively encrypting vital applications and exfiltrating files, which aligns closely with double extortion ransomware tactics.
– **Impact and Response**:
– The attack has caused disruptions across numerous business operations, impacting product distribution, billing, collections, and vendor payments.
– Lee Enterprises reported that while core products are returning to normal distribution, ancillary products remain delayed, affecting around 5% of the company’s total operating revenue.
– Temporary solutions, such as manual transaction processing, have been implemented to mitigate the operational impacts during recovery.
– **Ongoing Investigation**: Forensic analyses are underway to assess whether any sensitive data or personally identifiable information (PII) was compromised, though no conclusive evidence has been found as of the latest updates.
– **Financial Implications**: The incident is expected to have a material impact on Lee’s future financials, with the firm committing to updating stakeholders once a full assessment is finalized.
– **Cybersecurity Measures**: Lee Enterprises maintains a robust cybersecurity insurance policy that covers various facets such as incident response, forensic investigations, and business interruption costs—though specific limits and deductibles apply.
– **Operational Challenges**: Many of Lee’s publications experienced delays in print editions, reverting to manual processes that previously relied on automation, which has added to the complexity of their recovery efforts.
– **Public Communication**: The company’s newspapers have notified readers of disruptions and operational changes, underscoring the effects of this incident on their service delivery.
This incident serves as a significant case study for professionals in the fields of cybersecurity, compliance, and risk management, illustrating the real-world consequences of cyber attacks and the importance of comprehensive incident response strategies as well as the necessity of maintaining robust communication with stakeholders during crisis recovery scenarios.