Ransomware Attack On Moncler

Uploaded on 2022-01-25 in TECHNOLOGY--Hackers, FREE TO VIEW

Italian luxury brand Moncler has suffered a cyber attack in which criminals stole data and published it on the Dark Web. 

The company confirmed the attack on Tuesday 18th January, stating that it had suffered from a data breach after being attacked by the AlphV/BlackCat ransomware operation in December. 

The attack happened during December 2021, when the luxury fashion brand announced an interruption in its IT services, but the company assured that the attack would result in nothing more than a temporary outage.

The attack caused an outage of its IT services, in the final week of 2021, causing a temporary outage of its IT services which delayed shipments of goods ordered online.Moncler reportedly refused to pay a ransom to its attackers, leading them to publish information belonging to employees, former employees, customers, consultants, business partners, and suppliers online.

The company said in a statement: "While the investigation related to the attack is still ongoing, Moncler confirms that the stolen information refers to its employees and former employees, some suppliers, consultants and business partners, as well as customers registered in its database.  “With regard to information linked to customers, the company informs that no data relating to credit cards or other means of payment have been exfiltrated, as the company does not store such data on its systems."

Moncler does not store credit card information and stated that financial data had not been exfiltrated. In addition, the brief interruption to the logistical side of the company’s operations brought on by the attack had not affected its profits. 

Researchers at online fraud protection firm PerimiterX commented on the attack, saying that while data breaches and ransom demands continue to plague companies, protecting customer and employee data is becoming increasingly important and pushing sensitive data behind protected perimeters is no longer sufficient to prevent a malicious data breach.

Moncler that the interruption to its IT systems and logistics services has not caused a material impact on the group's economic results.

Moncler:    Fashion United:    The Industry.Fashion:   Oodaloop:     Infosecurity Magazine:     

Techradar:      Bleeping Computer

You Might Also Read: 

Major German Shopping Site Leaked Customer Data:

 

« Defending Against Log4j Vulnerabilities
How To Secure Web Gateway & Web Filtering »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

CloudInsure

CloudInsure

CloudInsure is a Cloud Insurance platform designed to specifically address emerging liabilities within the Cloud environment.

CERT-MU

CERT-MU

CERT-MU is the Mauritian National Computer Security Incident Response Team.

Infosistem

Infosistem

Infosistem is a Croatian ICT company with extensive expertise and experience in enterprise and SMB ICT projects and solutions.

Cytellix

Cytellix

Cytellix is an industry-standards-based, managed cybersecurity service provider, specializing in proactive behavioral analytics and situational awareness of an organization’s cyber posture.

CYBER.ORG

CYBER.ORG

CYBER.ORG's goal is to empower educators as they prepare the next generation to succeed in the cyber workforce of tomorrow.

Gluu

Gluu

Modern Authentication for Digital Enterprise. Organizations around the world trust Gluu for large-scale, high-security identity & access management.

In Fidem

In Fidem

In Fidem specializes in information security management, with a bold approach that views cybersecurity as a springboard to organizational transformation rather than a barrier to innovation.

Digital Pathways

Digital Pathways

Digital Pathways is an award-winning data security provider that helps businesses protect their digital assets.

Acmetek Global Solutions

Acmetek Global Solutions

Acmetek is a Global Distributor and a Trusted Advisor of PKI /IOT & SSL Security Products and a Managed Services Company.

ConnectSecure

ConnectSecure

ConnectSecure (formerly CyberCNS) is a global cybersecurity company that delivers tools to identify and address vulnerabilities and manage compliance requirements.

East Midlands Cyber Resilience Centre (EMCRC)

East Midlands Cyber Resilience Centre (EMCRC)

The East Midlands Cyber Resilience Centre is set up to support and help protect businesses across the region against cyber crime.

Great American Insurance Group

Great American Insurance Group

Great American's Cyber Risk Division offers cyber solutions for small and medium-sized businesses.

CodeHunter

CodeHunter

CodeHunter is a malware hunting SaaS platform designed to detect all variations of malware, known and unknown, without the need for source code or signatures.

Delta Partners

Delta Partners

Delta Partners is a venture capital firm investing in Ireland and the United Kingdom with a strong focus on early stage technology companies.

Grey Market Labs

Grey Market Labs

Grey Market Labs is a special place. It is a data privacy and security skunkworks.

Keystrike

Keystrike

Keystrike secures remote connections. Our technology ensures that commands made by an employee were physically made on their computer, rather than by a remote attacker.