Lockheed Martin Targeted in Alleged Pro-Iran Hacktivist Attack Lockheed Martin, a leading aerospace and defense contractor, has been targeted by a pro-Iran hacktivist group known as APT Iran, which claims to have stolen 375 terabytes of sensitive data. The threat actor alleges possession of blueprints for the F-35 fighter jet, the U.S.’s most advanced aircraft, alongside other corporate information. Security researchers, including Flashpoint and Check Point Software, have verified the group’s claims, which were first shared on Telegram, a platform frequently used by cybercriminals to disseminate threats. Halcyon later reported that APT Iran is demanding over $400 million in exchange for withholding the data from U.S. adversaries. Lockheed Martin acknowledged the reports in a statement, confirming awareness of the alleged breach while emphasizing its multilayered cybersecurity defenses. The company stated it maintains confidence in the integrity of its systems. APT Iran has previously claimed responsibility for attacks on critical infrastructure in Jordan, as documented by Palo Alto Networks. The group’s latest operation underscores the persistent threat posed by state-aligned hacktivists to high-profile defense contractors.

Lockheed Martin Data Breach Exposes $600 Million in Claims, Raising Cybersecurity Concerns A recent data breach involving defense contractor Lockheed Martin has led to claims totaling $600 million, sending shockwaves through the cybersecurity and defense sectors. While details remain limited, the incident underscores the growing financial and operational risks posed by cyber threats to high-profile organizations. The breach, which has not been publicly attributed to a specific threat actor or attack vector, highlights vulnerabilities in critical infrastructure and supply chain security. Lockheed Martin, a key player in aerospace, defense, and advanced technologies, handles sensitive government and military contracts, making it a prime target for cyber espionage and financial exploitation. The $600 million figure reflects the estimated value of compromised data, potential fraud, or related damages, though the full scope of the breach including whether classified or proprietary information was accessed remains unclear. The incident follows a pattern of escalating cyberattacks on defense contractors, with past breaches at companies like Boeing and Northrop Grumman exposing vulnerabilities in third-party risk management. As investigations continue, the breach serves as a stark reminder of the financial and reputational stakes in securing high-value digital assets, particularly in industries handling national security interests. The fallout may prompt renewed scrutiny of cybersecurity protocols across the defense sector and beyond.

In August 2022, Lockheed Martin, a global aerospace, defense, and security company, was targeted by the pro-Russian hacktivist group Killnet in a distributed denial-of-service (DDoS) attack. The group claimed to have not only disrupted Lockheed Martin’s online services but also exfiltrated employee data during the incident. However, Lockheed Martin publicly denied the data breach, asserting confidence in their cybersecurity measures and stating that no sensitive information was compromised. The attack, while primarily disruptive, raised concerns due to Killnet’s assertions about stolen employee records. If true, the breach could have exposed internal personnel data, including potentially sensitive details of current or former employees. The incident underscored vulnerabilities in critical defense contractors’ digital infrastructure, particularly amid geopolitical tensions. Though Lockheed Martin downplayed the severity, the alleged theft of employee data—if validated—would classify the attack as having significant internal data exposure risks, aligning with broader trends of cyber threats targeting high-profile defense and aerospace firms.