Italian fashion brand Moncler latest to suffer cyberattack

Yotam Katz, Product Manager at IntSights, a Rapid7 company, speaks out on the recent Montcler cyberattack by AlphV/BlackCat

Italian luxury fashion brand Moncler has disclosed it suffered a cyberattack at the hands of the AlphV/BlackCat ransomware operation in December.

The company says that it “received a ransom demand that has been rejected, firmly believing the request to be against its founding principles.” Now the threat group has leaked stolen data related to current and former employees, suppliers, consultants, business partners, and customers, offering it for sale to other threat actors.

In a press release, the company said: "​While the investigation related to the attack is still ongoing, Moncler confirms that the stolen information refers to its employees and former employees, some suppliers, consultants and business partners, as well as customers registered in its database. 

“With regard to information linked to customers, the company informs that no data relating to credit cards or other means of payment have been exfiltrated, as the company does not store such data on its systems.”

Yotam Katz, Product Manager at IntSights, a Rapid7 company, says: “The retail industry has been a popular target with threat actors due to the amount of personal and financial information these businesses handle. We’ve already seen messages from cybercriminals on the dark web offering to sell the personal information of high-value, wealthy retail customers, and it seems that the Moncler data is being sold to the highest or fastest bidder. If there is demand on the dark web for this data, then Moncler could potentially find themselves vulnerable to further cyberattacks later down the line.”

 

 

Share

Featured Articles

CYBER LIVE LONDON: Day 2 highlights of the hybrid tech show

We take a look at highlights of the different stages at the Tech Live London show, including insights from Claroty, SalesForce and Oracle

TECH LIVE LONDON: An overview of the hybrid technology show

We take a look at the first day of Tech Live London with insights from technology leaders from companies such as IBM, Microsoft and Vodafone

Does a cashless society mean higher risk of fraud?

Armen Najarian, Chief Identity Officer at Outseer, spoke to Cyber Magazine about malicious apps and fraud within a cashless society

5 minutes with Gary Brickhouse, CISO of GuidePoint Security

Cyber Security

CTO at Passbolt explains the importance of password managers

Application Security

Nord Security raises US$100mn at US$1.6bn valuation

Cyber Security