Italian fashion brand Moncler latest to suffer cyberattack

Yotam Katz, Product Manager at IntSights, a Rapid7 company, speaks out on the recent Montcler cyberattack by AlphV/BlackCat

Italian luxury fashion brand Moncler has disclosed it suffered a cyberattack at the hands of the AlphV/BlackCat ransomware operation in December.

The company says that it “received a ransom demand that has been rejected, firmly believing the request to be against its founding principles.” Now the threat group has leaked stolen data related to current and former employees, suppliers, consultants, business partners, and customers, offering it for sale to other threat actors.

In a press release, the company said: "​While the investigation related to the attack is still ongoing, Moncler confirms that the stolen information refers to its employees and former employees, some suppliers, consultants and business partners, as well as customers registered in its database. 

“With regard to information linked to customers, the company informs that no data relating to credit cards or other means of payment have been exfiltrated, as the company does not store such data on its systems.”

Yotam Katz, Product Manager at IntSights, a Rapid7 company, says: “The retail industry has been a popular target with threat actors due to the amount of personal and financial information these businesses handle. We’ve already seen messages from cybercriminals on the dark web offering to sell the personal information of high-value, wealthy retail customers, and it seems that the Moncler data is being sold to the highest or fastest bidder. If there is demand on the dark web for this data, then Moncler could potentially find themselves vulnerable to further cyberattacks later down the line.”

 

 

Share

Featured Articles

Why the UK is Listing Data Centres as Critical Cyber Assets

Being Western Europe's leader in number of Data Centres, the UK has decided to take steps to ensure they receive adequate protection from cyber threats

Trustwave Reveals the Financial Sector's Cyber Threats

Although it's not new to think that financial services organisations are prime targets for cybercriminals, the threat landscape they find themselves in is

TCS and Google Cloud Join for Solution to Secure the Cloud

TCS partners with Google Cloud to launch a range of AI-powered cybersecurity solutions to help businesses secure their clouds against advanced threats

Cybersecurity Conglomerate Reveals Threats Facing Consumers

Cyber Security

Decoding the US' Most Misunderstood Data Security Terms

Cyber Security

Orange Cyberdefense's Wicus Ross Talks Cyber Extortion Trend

Hacking & Malware