Ransomware Attack On Moncler

Uploaded on 2022-01-25 in TECHNOLOGY--Hackers, FREE TO VIEW

Italian luxury brand Moncler has suffered a cyber attack in which criminals stole data and published it on the Dark Web. 

The company confirmed the attack on Tuesday 18th January, stating that it had suffered from a data breach after being attacked by the AlphV/BlackCat ransomware operation in December. 

The attack happened during December 2021, when the luxury fashion brand announced an interruption in its IT services, but the company assured that the attack would result in nothing more than a temporary outage.

The attack caused an outage of its IT services, in the final week of 2021, causing a temporary outage of its IT services which delayed shipments of goods ordered online.Moncler reportedly refused to pay a ransom to its attackers, leading them to publish information belonging to employees, former employees, customers, consultants, business partners, and suppliers online.

The company said in a statement: "While the investigation related to the attack is still ongoing, Moncler confirms that the stolen information refers to its employees and former employees, some suppliers, consultants and business partners, as well as customers registered in its database.  “With regard to information linked to customers, the company informs that no data relating to credit cards or other means of payment have been exfiltrated, as the company does not store such data on its systems."

Moncler does not store credit card information and stated that financial data had not been exfiltrated. In addition, the brief interruption to the logistical side of the company’s operations brought on by the attack had not affected its profits. 

Researchers at online fraud protection firm PerimiterX commented on the attack, saying that while data breaches and ransom demands continue to plague companies, protecting customer and employee data is becoming increasingly important and pushing sensitive data behind protected perimeters is no longer sufficient to prevent a malicious data breach.

Moncler that the interruption to its IT systems and logistics services has not caused a material impact on the group's economic results.

Moncler:    Fashion United:    The Industry.Fashion:   Oodaloop:     Infosecurity Magazine:     

Techradar:      Bleeping Computer

You Might Also Read: 

Major German Shopping Site Leaked Customer Data:

 

« Defending Against Log4j Vulnerabilities
How To Secure Web Gateway & Web Filtering »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Sogeti

Sogeti

Sogeti deliver solutions that enable digital transformation and offer cutting-edge expertise in Cloud, Cybersecurity, Digital Manufacturing, Quality Assurance, Testing, and emerging technologies.

DeuZert

DeuZert

DeuZert is an accredited German certification body in accordance with ISO/IEC 27001 (Information Security Management).

BlueRiSC

BlueRiSC

BlueRiSC invent cutting-edge system assurance solutions for the 21st century with novel software and hardware designs focusing on security technologies that can be game changing.

BlackScore

BlackScore

BlackScore is a technology company seeking to disrupt risk assessment using AI-driven technology.

ditno

ditno

ditno uses machine learning to help you build a fully governed and micro-segmented network. Dramatically mitigate risk and prevent lateral movement across your organisation – all from one centralised

StrataCore

StrataCore

StrataCore is a single-source technology lifecycle advocate that works behind IT teams as a strategic partner to help them achieve peak enterprise outcomes.

Purism

Purism

Purism works with hardware component manufactures and the free software community to build high quality hardware that respects your digital life.

ViewQwest

ViewQwest

ViewQwest is a regional telecommunications & information technology services company. We specialize in providing Connectivity, Managed Network, Managed SD-WAN, and Managed Security solutions.

Oregon Systems

Oregon Systems

Oregon Systems is a Regional Leader & Distributor with value added services for OT, IoT, IIoT & IT Cybersecurity products, Solutions & professional services throughout the middle-east region.

Training.com.au

Training.com.au

Training.com.au is a comparison website through which those looking to learn about different aspects of cyber security can compare learning courses from training providers from across Australia.

Cytek

Cytek

Cytek is a leading provider of cybersecurity and HIPAA compliance for dental practices and other industries.

Prikus Tech

Prikus Tech

Prikus is a full-fledged Cyber Security Company helping organizations worldwide to manage cyber risks. We offer Risk & Compliance Services, Security Testing & Managed Security Services.

Resillion

Resillion

Resillion (formerly Eurofins Digital Testing) is a global leader in quality engineering and cyber security services with operations in Europe, US, UK, India and China.

HYCU

HYCU

HYCU was born of the need to simplify data protection and provide equivalent levels of backup and recovery support across on premises, public cloud, and SaaS workloads.

Cyber Guards

Cyber Guards

Cyber Guards provide comprehensive, turn-key cyber security programs for small and mid-size business for about the cost of one full-time cybersecurity hire.

Crisis24

Crisis24

Crisis24 is a leading integrated risk management, crisis response, consulting, and global protective solutions firm.