Outsourcing giant Serco has confirmed parts of its infrastructure in mainland Europe have been hit by a double extortion ransomware attack from the emergent Babuk group. The Babuk gang claimed the attack on Thursday 25 October, but Serco did not publicly acknowledge the incident until Sunday 31 January. The cyber criminals made specific references to Serco partners, including Nato and the Belgian Army, and threatened Serco with consequences under the General Data Protection Regulation (GDPR) The NHS Test and Trace programme was unaffected by the incident.”]
Source: https://www.computerweekly.com/news/252495684/Serco-confirms-Babuk-ransomware-attack