Security News > 2021 > July > Guess Fashion Brand Deals With Data Loss After Ransomware Attack

A February ransomware attack on fashion label Guess linked to Colonial Pipeline attackers DarkSide is still causing damage.

It's Guess's breach notification filing with Maine's Attorney General's Office that said more than 1,300 people had their information compromised during the ransomware attack, including account numbers, debit- and credit-card numbers, and even the related security codes, access codes and personal identification numbers.

"The information accessed or acquired may have included your Social-Security number, driver's-license number, passport number, and/or financial account number," the letter read. Employees and Contractors Exposed.

The fallout threat to the victims stemming from the Guess ransomware attack will remain for years to come, according to Uriel Maimon with PerimeterX. "When hackers obtain information from a breach, both the company and it's customers can be affected for years to come," Maimon said via email.

"The significant amount and very personal types of data being collected by the organization, including passport numbers, Social-Security numbers, driver's-license numbers, financial account and/or credit/debit-card numbers with security codes, passwords or PIN numbers, is an extremely valuable dataset for cybercriminals if they want to steal identities."

"There is a fairly large number of unanswered questions in this breach notification and the event itself," Schrader told Threatpost.

News URL

https://threatpost.com/guess-fashion-data-loss-ransomware/167754/