Italian fashion brand Moncler latest to suffer cyberattack

Yotam Katz, Product Manager at IntSights, a Rapid7 company, speaks out on the recent Montcler cyberattack by AlphV/BlackCat

Italian luxury fashion brand Moncler has disclosed it suffered a cyberattack at the hands of the AlphV/BlackCat ransomware operation in December.

The company says that it “received a ransom demand that has been rejected, firmly believing the request to be against its founding principles.” Now the threat group has leaked stolen data related to current and former employees, suppliers, consultants, business partners, and customers, offering it for sale to other threat actors.

In a press release, the company said: "​While the investigation related to the attack is still ongoing, Moncler confirms that the stolen information refers to its employees and former employees, some suppliers, consultants and business partners, as well as customers registered in its database. 

“With regard to information linked to customers, the company informs that no data relating to credit cards or other means of payment have been exfiltrated, as the company does not store such data on its systems.”

Yotam Katz, Product Manager at IntSights, a Rapid7 company, says: “The retail industry has been a popular target with threat actors due to the amount of personal and financial information these businesses handle. We’ve already seen messages from cybercriminals on the dark web offering to sell the personal information of high-value, wealthy retail customers, and it seems that the Moncler data is being sold to the highest or fastest bidder. If there is demand on the dark web for this data, then Moncler could potentially find themselves vulnerable to further cyberattacks later down the line.”

 

 

Share

Featured Articles

ICYMI: New Age of the CISO and cybersecurity trends for 2023

A week is a long time in cybersecurity, so here’s a round-up of the Cyber Magazine articles that have been starting conversations around the world

Kingfisher chooses Google Cloud as catalyst for growth

Google Cloud will support Kingfisher's digital ambitions with a range of solutions, from infrastructure to data analytics.

ICYMI: Cyber predictions for 2023 and trouble in paradise

A week is a long time in cybersecurity, so here’s a round-up of the Cyber Magazine articles that have been starting conversations around the world

Osirium shares its cyber predictions for 2023

Cyber Security

ICYMI: Unloved emails and cybersecurity worth $500bn by 2030

Cyber Security

Cyber security market anticipated to reach $500bn by 2030

Cyber Security