2024-02-09 WILLIS LEASE FINANCE CORP Cybersecurity Incident

Page last updated on April 18, 2024

WILLIS LEASE FINANCE CORP initially disclosed a cybersecurity incident in an SEC 8-K filing on 2024-02-09 17:17:03 EST.

Incident Details

Material: Unknown
Is Breach: Unknown
Records Compromised: Unknown
Data Types Impacted: No Data Types Tracked (yet)

Compromised Date:
Detected Date: 2024-01-31
Disclosure Date: 2024-02-09
Contained Date: 2024-02-09
Recovered Date:

Attack Goal: Unknown

Costs: No Costs Tracked (yet)

Filings

8-K filed on 2024-02-09

WILLIS LEASE FINANCE CORP filed an 8-K at 2024-02-09 17:17:03 EST
Accession Number: 0001018164-24-000005

Item 8.01 Other Events.

On February 9, 2024, Willis Lease Finance Corporation (“WLFC” or the “Company”) announced that on January 31, 2024, it detected unauthorized activity on portions of its information technology (IT) systems. An investigation into the nature and scope of the incident was launched with the assistance of leading third-party cybersecurity experts and the Company took steps to contain, assess and remediate the activity, including taking certain systems offline. The Company has not identified any unauthorized activity after February 2, 2024 and, as of the date of this filing, believes it has fully contained the unauthorized activity. The Company continues to operate and service customers, and has implemented workarounds for some of its processes where necessary. The Company, together with its team of cybersecurity experts, is working diligently to respond to and address the issues posed by the incident. The investigation to assess the complete nature, scope and impact of the incident, including what data has been exfiltrated or otherwise impacted, remains ongoing. Law enforcement has been notified of the incident.

Company Information