Weir Group, one of Scotland's biggest engineering firms, revealed it was victim of “a sophisticated attempted ransomware attack” in the second half of September forcing the company to shut down some of its operations
In a statement, the mining equipment firm said that “Weir’s cybersecurity systems and controls responded quickly to the threat” and took a number of measures, such as isolating and shutting down IT systems including core Enterprise Resource Planning (ERP) and engineering applications. However, the company said the incident led to shipping delays worth more than £50m in revenue.
Weir estimates that the incident could cost it as much as £5 million.
“As a result of the rephasing of shipments caused by the cybersecurity incident, the Group experienced revenue deferrals of c.£50m in September alongside overhead under-recoveries in manufacturing and engineering,” the firm said in the statement.
While the investigation into the breach is still ongoing, at this point no evidence has been found that any personal or other sensitive data has been exfiltrated or encrypted, it said.