Search This Blog

Powered by Blogger.

Blog Archive

Labels

Showing posts with label ALPHV ransomware gang. Show all posts

Major Data Breach Hits Popular Brands

 


VF Corp, the parent company of renowned brands including Timberland, The North Face, and Vans is grappling with a significant cybersecurity breach. Discovered on December 13, 2023, the breach by the ALPHV group disrupted the online systems of these beloved brands, causing a major operational setback.

This cyber attack's impact is massive, affecting not only VF Corp but also exposing the personal information of 35.5 million customers. Your data may be at risk if you've made purchases from Timberland or The North Face. While VF Corp assures that crucial details like payment cards and social security numbers are safe, the specifics of the stolen information remain unclear.

Beyond compromising company computers, the breach disrupted the fulfilment of online orders, creating chaos for holiday shoppers. Though VF Corp states no evidence of stolen passwords, they recommend changing them for added security.

Despite the seriousness of the situation, VF Corp is actively working to restore normalcy. E-commerce sites and distribution centres are back in operation with minimal issues. While the breach's financial impact is uncertain, VF Corp plans to recover costs through their cybersecurity insurance.


Scope of the Attack

VF Corp revealed to regulators that personal data from a staggering 35.5 million customers had been compromised. While sensitive information like payment card details, bank accounts, and social security numbers were not accessed, the exact nature of the stolen data remains undisclosed.

Brands Affected

Popular labels under VF Corp's umbrella, including Supreme, Kipling, and JanSport, were impacted. The breach led to disruptions in online order fulfilment and other operations, affecting millions who may have purchased their products.

Data Exfiltration Details

Although specifics regarding the stolen data remain vague, it is suspected that personal contact details, addresses, and order information may be among the compromised information.

Customer Impact

VF Corp assured that no evidence suggested the theft of customer passwords. However, as a precaution, customers are advised to change relevant passwords associated with these brands.

Operational Status and Recovery

VF Corp reported that its ecommerce sites and distribution centres are currently operational with minimal issues. The company is actively cooperating with law enforcement agencies and regulators to address the aftermath of the breach.

Financial Implications

While the exact cost of the security breach and recovery remains unknown, VF Corp believes the impact is not material to its financial condition. The company intends to seek reimbursement through claims to its cybersecurity insurers.

In light of this incident, customers are urged to imply a wide-awake attitude and consider updating passwords associated with the affected brands to enhance their online security. VF Corp's commitment to cooperation and recovery measures is underway as they find a way to deal with the repercussions of this significant data breach.


Casepoint Investigates Alleged Breach After Hackers Claimed Theft of Government Data


US-based legal technology platform, Casepoint has apparently investigated a potential cybersecurity incident following claims of threat actors, who have hacked the platform claiming terabytes of sensitive data.

Casepoint offers legal advice for governmental organizations, businesses, and law firms in litigation, investigations, and compliance. The company has a number of well-known clients, including the U.S. Department of Defense (DoD), Marriott Hotels, the Securities and Exchange Commission (SEC), the U.S. Courts, and the Mayo Clinic.

Vishal Rajpara, the CTO and co-founder of Casepoint, released a statement in which he declined to confirm but otherwise did not seem to refute rumors that the ALPHV ransomware gang was responsible for the attack. BlackCat, the Russia-based ransomware gang claims to have stolen two terabytes of confidential data from Casepoint, which included data from the US government and “many other things you have tried so hard to keep,” the gang stated.

Some of the data stolen, according to TechCrunch, included private information from a Georgia-based hospital, a legal document, a state-sponsored ID and an internal document apparently issued by the FBI. However, the FBI is yet to confirm the allegations made by TechCrunch.

Following Casepoint’s acknowledgment of the investigation, ALPHV updated on the issue in a statement published on May 31. The firm also shared what seems to be the login details for the company’s software.

Rajpara published a statement on the issue, saying “Casepoint remains fully operational and have experienced no disruption to our services[…]the third-party forensic firm that we have engaged is currently running scans and deploying advanced endpoint detection monitoring tools and will be looking for signs of suspicious activity.” “We are early on in our investigation and are committed to keeping our clients informed as we learn more.”

However, Rajpara declined to comment on whether the business has technological resources to identify the data that was accessed or exfiltrated or whether it has been contacted by the ALPV ransomware organization with any communications, such as a ransom demand. 

ALPHV Gang

The ALPHV gang has previously claimed to have attacked NextGen Healthcare, a U.S.-based maker of electronic health record software, and Ring, a video surveillance firm owned by Amazon. Despite the hackers' denials that they were connected to the gang, data obtained from Western Digital was also hosted on ALPHV's leak site.

Some other known victims of the ALPHV gang include Bandai Namco, Swissport, and the Munster Technological University in Ireland.  

Ring Data Breach: What you Need to Know About the Home Security Company Attack


With innovative doorbells and security cameras making a huge breakthrough for home security across the world, Ring now stores a great amount of data. Although the company has recently been facing ransomware gang threats to expose the data online. 

About Ring LLC 

Ring LLC is a home security and smart home company owned by Tech-giant Amazon. The firm creates home security systems with exterior cameras, such as the Ring Video Doorbell smart doorbell, and runs the Neighbors app, which allows users to share video footage with each other online in a communal setting. 

Ring Data Breach 

According to a report by Motherboard, the ALPHV ransomware gang has claimed to have acquired access to Amazon-owned Ring’s systems and its data. Despite the fact that there is no proof of a system breach, Ring did indicate as much in a statement to the news organization. But, it is well known to them that a ransomware assault has affected one of its third-party providers. 

In a response to Ring, ALPHV shares a post on Twitter saying “There’s always an option to let us leak your data”. The ransomware group has not yet made any of the data it is said to have stolen from the business available. But, there is still cause for alarm when Motherboard discovered a Ring listing on ALPHV's data dump website. 

Ransomware groups like ALPHV have evolved into using data dump sites to entice victims into paying ransoms in order to regain access to their data. In an effort to persuade businesses to cooperate with the hackers holding their data hostage, a tiny percentage of the stolen data from those businesses is frequently posted publicly. 

ALPHV Ransomware Gang 

The ALPHV ransomware gang has attacked companies in the US, Europe, and Asia. The group has also been referred to as BlackCat, named after the malware it deploys. In the past, ALPHV has taken credit for hacking hospitality firms like the Westmont Hospitality Group, which manages IHG and Hilton hotels around the world, as well as leaking medical data from the Lehigh Valley Health Network. 

ALPHV's data dump site, where it posts stolen data in collections referred to as "Collections," is another feature that sets it distinct from other ransomware organizations. Other ransomware organizations may have comparable websites, but ALPHV's is renowned for being indexed and simpler to search. 

Should you be Worried About Your Ring Data? 

Currently, Amazon is looking into a third-party vendor's data breach that ALPHV has claimed responsibility for. We are unlikely to hear anything more until this investigation is over. Ring's products are widely utilized in homes all over the world since they are among the best video doorbells and home security cameras today. 

However, the firm employs end-to-end encryption (E2EE) in the majority of nations to prevent governments and other parties from accessing the data from your cameras and snooping on them. If the ALPHV ransomware gang did end up infiltrating Ring’s third-party vendors, it is possible that the group has also managed to steal corporate or customer data in the attack. 

If you are concerned about your Ring data or even the fact that the firm is charging for features that were previously free, it is a good time to consider some alternatives instead. In any case, we will probably soon learn whether or not the ALPHV ransomware gang managed to steal client data.