Stolen data published following ransomware attack against fashion brand Moncler

Italian luxury fashion brand Moncler SpA was hit by a ransomware attack that led to the publication of stolen data.

The ransomware attack occurred in December, with the data stolen in the attack appearing this week on the dark web, a dark corner of the internet for illegal activity. A group named AlphV / BlackCat is taking responsibility for the ransomware attack.

The stolen data included data relating to employees, former employees, supplies, consultants, business partners and customers, according to Bleeping Computer. The company said it refused to pay the ransom demanded in the attack because it was contrary to its founding principles. The AlphV / BlackCat ransomware gang claims they asked for $ 3 million not to publish the data.

Moncler noted that no credit card or other payment method data was compromised, as the company does not store such data on its systems. Moncler added that he was deeply sorry for what happened and for any inconvenience or concern that this situation may have caused to the stakeholders. The company activated a team of cybersecurity experts at the time of the attack and has been tightening its cybersecurity measures ever since.

The Alphv / BlackCat ransomware group first emerged in December and it was noted that at the time it was using the first professional ransomware strain encoded in the Rust programming language and distributed against companies. According to Recorded Future, the gang advertises its software on a ransomware-as-a-service basis on cybercrime forums, inviting others to join it and launch attacks against large corporations.

“How does an organization make a decision that impacts individuals’ private information?” Purandar Das, co-founder and CEO of encryption-based security solutions company Sotero Inc., told SiliconANGLE. “Does being employees or having a business relationship with the organization give them the right to allow a criminal to publish it? Where does an organization’s responsibility lie in terms of protecting its employees from impact?

Kim DeCarlis, Chief Marking Officer at PerimeterX Inc. Application Security Module noted that data breaches are part of the web attack lifecycle and continue to fuel account capture and credential filling attacks.

“Therefore, we need to protect the apps that power our daily lives by disrupting the lifecycle of web attacks,” said DeCarlis. “This includes stopping the theft, validation and fraudulent use of account and identity information anywhere along the digital journey.”

Photo: Huichimai Fang / Wikimedia Commons

Show your support for our mission by joining our community of Cube Club and Cube Event experts. Join the community that includes Amazon Web Services and CEO Andy Jassy, ​​Dell Technologies Founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many other luminaries and experts.


Leave a Comment