Retailer Fat Face Pays $2 Million Ransom to Conti Gang

Data Breach Today

Fat Face has now confirmed the ransomware hit

Retail 215

American retailer Guess discloses data breach after ransomware attack

Security Affairs

American clothing brand and retailer Guess discloses a data breach after the February ransomware attack and is notifying the affected customers. On July 9, 2021, the fashion retailer started sending notification letters to the individuals whose information may have been involved.


Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Chilean-based retail giant Cencosud hit by Egregor Ransomware

Security Affairs

Chilean-based retail giant Cencosud has suffered a ransomware attack that impacted operations at its stores, Egregor ransomware appears to be involved. BleepingComputer was the first to confirm that the retail giant was hit by Egregor ransomware after it obtained the ransom note.

Retail 112

Ransomware Hit ATM Giant Diebold Nixdorf

Krebs on Security

Diebold Nixdorf , a major provider of automatic teller machines (ATMs) and payment technology to banks and retailers, recently suffered a ransomware attack that disrupted some operations.

From St. Louis to France, Ransomware Victim List Expands

Data Breach Today

Among the Causes: Hit Against Website Hosting Giant Ransomware continues to pummel many types of organizations, recently including South Korea's E-Land retail group, French newspaper Paris-Normandie and a Georgia county school system.

Retail 245

Retail Cyberattacks Set to Soar 20% in 2019 Holiday Season


A couple of factors this year are making the 2019 holiday shopping season a circus for cybercriminals when it comes to cyberattacks against retail orgs. Podcasts Web Security cyberattack cybercrime emotet holiday shopping holiday shopping security malware Online Security ransomware retail

Ransomware's Helper: Initial Access Brokers Flourish

Data Breach Today

High-Quality Access - via RDP, VPN, Citrix - Can Retail for $2,000, Kela Reports To take down bigger targets more easily and quickly, ransomware gangs are increasingly tapping initial access brokers, who sell ready access to high-value networks.

Access 134

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Security Affairs

ransomware attacks against Australian organizations starting July 2021. ransomware attacks against Australian organizations in multiple industry sectors starting July 2021. The Australian agency also published 2021-006: ACSC Ransomware Profile – Lockbit 2.0 ransomware.

Coop supermarket closes hundreds of stores after Kaseya supply chain ransomware attack

Security Affairs

Swedish supermarket chain Coop is the first company to disclose the impact of the recent supply chain ransomware attack that hit Kaseya. The supermarket chain Coop shut down approximately 500 stores as a result of the supply chain ransomware attack that hit the provider Kaseya.

Managing HR in The Retail Sector in the COVID-19 World


A good example of implementing these changes can be found with HR in the retail sector. Traditional retailers, those with physical storefronts, had struggled before COVID-19. Then the pandemic hit and most retailers were declared non-essential and shut down.

Ransomware at IT Services Provider Synoptek

Krebs on Security

Synoptek , a California business that provides cloud hosting and IT management services to more than a thousand customer nationwide, suffered a ransomware attack this week that has disrupted operations for many of its clients, according to sources. Ransomware rEvil Sodinokibi Synoptek

Retailers increase cyber security spending, but attacks continue to rise

IT Governance

The UK’s biggest retailers are spending more than ever on cyber security but are continuing to see an alarming rise in cyber attacks and data breaches due to the ever-evolving threat landscape, a report has found. According to The British Retail Consortium’s 2019 Retail Crime Survey , large organisations invested £162 million in cyber defences in the 2017­–18 financial year, an increase of 17% on 2017. Are retailers investing wisely? Retail

Kmart, Latest Victim of Egregor Ransomware – Report


The struggling retailer's back-end services have been impacted, according to a report, just in time for the holidays. Malware Web Security back-end servers cyberattack egregor holiday shopping Kmart ransomware

Nefilim ransomware gang published Luxottica data on its leak site

Security Affairs

The Nefilim ransomware operators have posted a long list of files that appear to belong to Italian eyewear and eyecare giant Luxottica. Security experts believe that threat actor exploited the above flaw to infect the systems at the company with ransomware.

Researchers uncovered the network infrastructure of REVil – The notorious ransomware group that hit Kaseya

Security Affairs

re’ in addition to a ransomware page available in the TOR network. Ransomware #Cybersecurity #ThreatIntel #ThreatHunting #Malware — Resecurity (@resecurity_com) July 7, 2021. SecurityAffairs – hacking, REVIL ransomware).

RansomEXX ransomware leaks files stolen from Italian luxury brand Zegna

Security Affairs

RansomEXX ransomware operators hit the popular Italian luxury fashion house Ermenegildo Zegna Holding and started leaking stolen files. As of 2018, Ermenegildo Zegna operated 480 retail stores (267 of which company-owned) across the world.

Clop Ransomware gang claims to have stolen 2 million credit cards from E-Land

Security Affairs

E-Land Retail suffered a ransomware attack, Clop ransomware operators claim to have stolen 2 million credit cards from the company. E-Land Retail is a South Korean conglomerate headquartered in Changjeon-dong Mapo-gu Seoul, South Korea.

Retail 104

Cyberattacks on Retailers Could Increase 20% this Holiday Season

Dark Reading

Commodity malware and ransomware continue to be the biggest threats, says VMWare Carbon Black

FIN11 gang started deploying ransomware to monetize its operations

Security Affairs

The financially-motivated hacker group FIN11 has started spreading ransomware to monetize its cyber criminal activities. The financially-motivated hacker group FIN11 has switched tactics starting using ransomware as the main monetization method.

FBI warns US organizations of ProLock ransomware decryptor not working

Security Affairs

issued a flash alert to warn organizations in the United States that the ProLock ransomware decryptor doesn’t work properly. issued a flash alert to warn organizations of the new threat actor targeting healthcare, government, financial, and retail industries in the US. The FBI?

Steelcase office furniture giant hit by Ryuk ransomware attack

Security Affairs

Office furniture company Steelcase was hit by Ryuk ransomware attack that forced it to shut down its network to avoid the malware from spreading. The company is not aware of data loss caused by the ransomware attack.

Hunton Publishes Retail Year in Review

Hunton Privacy

On January 18, 2018, Hunton & Williams LLP’s retail industry lawyers, composed of more than 100 lawyers across practices, released their annual Retail Year in Review publication. The Retail Year in Review includes several articles authored by our Global Privacy and Cybersecurity lawyers, and touches on many topics of interest including blockchain, ransomware, cyber insurance and the Internet of Things.

QakBot Big Game Hunting continues: the operators drop ProLock ransomware for Egregor

Security Affairs

The QakBot banking trojan has dropped the ProLock ransomware, they are now opting for the Egregor ransomware in their operations. Hence, all of the above considered, Group-IB experts assess it’s very likely that QakBot operators have switched from ProLock to Egregor ransomware.

Boyne Resorts ski and golf resort operator hit with WastedLocker ransomware

Security Affairs

The systems at the US-based ski and golf resort operator were infected with the WastedLocker ransomware, the incident impacted reservation systems. Boyne Resorts was the victim of WastedLocker ransomware attack, the incident has impacted reservation systems.

TA505 Crooks are Now Targeting US Retailers with Personalized Campaigns


Hacks Malware Dridex flawedammyy Locky ransomware Ricoh printer ta505Threat group moves away from “smash-and-grab” attacks and adopts a boutique approach to targeting victims.

Toymaker giant Mattel disclosed a ransomware attack

Security Affairs

Toymaker giant Mattel disclosed a ransomware attack, the incident took place in July and impacted some of its business operations. Toy industry giant Mattel announced that it has suffered a ransomware attack that took place on July 28th, 2020, and impacted some of its business operations.

Ransomware: Now Is the Time to Address This Challenge

Thales Cloud Protection & Licensing

Ransomware: Now Is the Time to Address This Challenge. Reports are indicating that cyberattacks are growing in volume and impact as ransomware tactics have become more advanced and damaging. Security agencies have developed processes to mitigate ransomware attacks.

Ransom Gangs Emailing Victim Customers for Leverage

Krebs on Security

This letter is from the Clop ransomware gang, putting pressure on a recent victim named on Clop’s dark web shaming site. universities that got hit with Clop ransomware recently. Wosar said Clop isn’t the only ransomware gang emailing victim customers.

Croatia’s largest petrol station chain INA group hit by ransomware attack

Security Affairs

A ransomware attack has disrupted operations at INA Group, Croatia’s biggest oil company, and its largest petrol station chain. Fuel sales at our retail locations continue unhindered. SecurityAffairs – INA Group, ransomware).

REvil gang exploited a zero-day in the Kaseya supply chain attack

Security Affairs

Kaseya was addressing the zero-day vulnerability that REvil ransomware gang exploited to breach on-premise Kaseya VSA servers. A new supply chain attack made the headlines, on Friday the REvil ransomware gang hit the Kaseya cloud-based MSP platform impacting MSPs and their customers.

Retail 111

Clop Gang Makes Off with 2M Credit Cards from E-Land


The ransomware group pilfered payment-card data and credentials for over a year, before ending with an attack last month that shut down many of the South Korean retailer’s stores.

MY TAKE: SMBs can do much more to repel ransomware, dilute disinformation campaigns

The Last Watchdog

However, at this moment in history, two particularly worrisome types of cyber attacks are cycling up and hitting local government entities hard: ransomware sieges and election tampering. Here are key takeaways: Ransomware run We’ve recently learned just how easy it is for ransomware purveyors to either extract huge extortion payments from local agencies, or worse, cause tens of millions of dollars of damage. Ransomware attacks are trendy again,” Weller told me. “If

Travelex Knocked Offline by System-Wide Malware Attack


The foreign-currency-exchange giant said that it has been hit by a virus, affecting retail customers and banking partners alike. Malware banking partners foreign currency exchange malware attack offline ransomware service disruption travel money travelex

Bristol Airport systems offline in suspected ransomware attack

IT Governance

It has been reported that a speculative ransomware attack on the airport resulted in its information screens being taken offline, and flight information being written on whiteboards, although no flights were delayed. Ransomware is a type of malicious programme that demands payment after launching a cyber attack on a computer system. Download our infographic to learn more about what ransomware is, how it works and what you can do to stop it. Another day, another cyber attack.

DoppelPaymer, a fork of BitPaymer Ransomware, appeared in the threat landscape

Security Affairs

Some of the crooks behind the Dridex Trojan have split from the gang and released a forked version of the BitPaymer ransomware dubbed DoppelPaymer. Cybercrime gang tracked as TA505 has been active since 2014 and focusing on Retail and Banking industries. The group that is known for the distribution of the Dridex Trojan and the Locky ransomware , has released other pieces of malware including the tRat backdoor and the AndroMut downloader. .

Group-IB Hi-Tech Crime Trends 2020/2021 report

Security Affairs

The most severe financial damage has occurred as a result of ransomware activity. Group-IB: The ransomware plague cost the world over $1 billion. Late 2019 and all of 2020 were marked by an unprecedented surge in ransomware attacks.

4 Industries That Have to Fight the Hardest Against Cyberattacks

Security Affairs

In November 2018, a ransomware attack forced two hospitals to send ambulances elsewhere and only accept walk-up patients to the emergency rooms. Retail. The retail industry is cyclical, so certain times of the year — including the holiday season or when kids go back to school — are particularly busy. Despite those risks, retailers make blunders when budgeting for cybersecurity. happened at retail establishments.

U.S. Bookstore giant Barnes & Noble hit by cyberattack

Security Affairs

is an American bookseller with the largest number of retail outlets in the United States in fifty states. Information shared about the cyber attacks suggests that the company was the victim of a ransomware attack.

Retail 101

California IT service provider Synoptek pays ransom after Sodinokibi attack

Security Affairs

Synoptek, A California-based IT service provider decided to pay the ransom to decrypt its files after being infected with the Sodinokibi ransomware. The infection took place on December 23, the hackers first compromised the company network then installed the ransomware.

Types of Malware & Best Malware Protection Practices

eSecurity Planet

Ransomware. Unlike ransomware, it might be a criminal operation that does not involve the collection of a ransom. Email is also usually how ransomware works. Since 2008, RAM scraping has been a boon for retailers. Ransomware. In recent years, ransomware has quickly become one of the most prevalent types of malware. Other forms of ransomware threaten to publicize sensitive information within the encrypted data. How to Defend Against Ransomware.