CPI and The Agency suffer cyber attacks as publisher profits 'hit significantly'

Penny Thomas, publisher at Firefly Press, told The Bookseller of the impact: “CPI has been a fantastic printer and has been fantastic with information and explaining. I know they’re trying their best with workarounds but it has hit us pretty hard. We have one book at the printers which is due out in March which I’ve had to quickly digitally print elsewhere... In fact I’ve had to do that with two to three print runs which will effectively wipe out some of our profits on some of our print runs so it’s quite serious... It will significantly hit our profits on one particular order... and would quite probably wipe out profits on one significant order for us.

“We’re completely out of stock with one book, which I know will take them longer. I know they’re trying their absolute best but they can’t guarantee when things will be back up and running, so it’s been expensive for us and it’s difficult and we’re running out of some books where we’re normally good at keeping things in stock.

“I’ve been to other printers and either they can’t fit us in or their prices aren’t as competitive. I know they print about two million books from one factory so I’m guessing a lot of other people have been affected. I do feel for CPI – they don’t deserve this and it must be quite devastating for them.”

Jessica Hare, who heads up the books department at The Agency, circulated an email seen by The Bookseller which reads: “Unfortunately, The Agency has been subject to a ransomware attack by a criminal cyber group. This caused a significant IT outage as the malware deployed encrypted company data files and prevented access. The Rhysida ransomware group, who have targeted many high-profile organisations in recent times (including, for example, the British Library), have claimed they are behind the attack and that they will publish stolen data if not paid a ransom.

“We are contacting you because your personal data may have been copied and, if the criminals carry through their threat, may be leaked. Whilst our IT specialists and an additional cyber security company are working hard to identify which items of data have been copied, the attack methodology of Rhysida involves defence evasion and anti-forensics, i.e. a deliberate ‘clean-up’, making it hard to trace their activity. At this stage there is no evidence that any data has been made public but it is advisable to be vigilant about your accounts and emails.” 

She added: “Sadly these types of attacks are extremely common. We have been informed that several companies have been attacked just this week. We have taken targeted protective measures to ensure the security of our systems and continue to closely monitor them as a priority. We are continuing to investigate the attack with the assistance of IT and cyber security specialists and the Metropolitan Police Service cybercrime unit.” 

Clients were urged in the email to be wary of new details apparently sent out by The Agency and to contact the company immediately if they were in doubt. The company was not able to add any further comment to The Bookseller as it said the team was “busy dealing with the fall out” from the incident.

The British Library reportedly spent £6m rebuilding its digital services after the Rhysida attack in autumn 2023. 

Have you been affected by these cyber attacks? Email heloise.wood@thebookseller.com