Media conglomerate Lee Enterprises has officially confirmed that a sophisticated cyberattack is the primary cause behind widespread operational disruptions affecting dozens of newspapers across the United States. The breach, which occurred earlier this week, has crippled key publishing systems and subscriber services.
Systems Offline and Operational Impact
In an internal communication sent to customers on Friday, Lee CEO Kevin Mowbray stated that the company is actively working to “fully restore our systems.” The outage has hit hard, with internal reports indicating that a data center hosting critical applications and employee services went offline on February 3. The damage extends to core infrastructure, including call center applications, internal phone lines, remote employee VPN access, and single sign-on (SSO) authentication services.
While the company has managed to maintain publication schedules, the impact on print editions is evident. The St. Louis Post-Dispatch, one of the 72 publications under the Lee umbrella, reported the incident after experiencing reduced page counts in several editions throughout the week.
Investigation into Data Exposure
Tracy Rouch, a spokesperson for Lee Enterprises, characterized the incident as a “cybersecurity event.” The company is currently conducting a forensic analysis to determine the scope of the breach and whether any sensitive information was accessed or exfiltrated by malicious actors. As of Monday, the company has declined to disclose whether it has received ransom demands or if it possesses the technical logs necessary to confirm the extent of the data compromise.
Other outlets, such as the Casper Star-Tribune, have alerted readers that the technical failures may temporarily hinder access to subscription accounts. The company has refused to make its Chief Information Security Officer (CISO), Rob Hoffpauir, available for comment regarding the recovery timeline.
A Recurring Target
This incident marks the second major security failure for Lee Enterprises in recent years. In 2021, the Wall Street Journal reported that Iranian state-sponsored hackers had successfully compromised the publisher’s content management system. That attack was allegedly part of a broader campaign to disseminate disinformation ahead of the 2020 U.S. presidential election.
The current disruption follows a challenging fiscal period for the media giant. Lee Enterprises recently reported quarterly earnings of $144.6 million—a 7% year-over-year decline—though the company’s official financial disclosures made no mention of the ongoing cybersecurity crisis.