Security News > 2022 > April > Menswear Brand Zegna Reveals Ransomware Attack
High-end Italian fashion house Ermenegildo Zegna revealed on Monday that it was the target of a ransomware attack last August - and that it managed to recover its systems from back-up without paying a ransom.
In a public filing this week the company acknowledged that it was a ransomware attack that "Impacted the majority of our IT systems" and ultimately led to some private accounting data stolen in the incident to be leaked online.
The RansomExx ransomware operation claimed responsibility for the August attack and published leaked data stolen from the company online the day Zegna fist announced the incident, according to a report published by Bleeping Computer.
Zegna gradually restored its IT systems - which include multiple server locations, third-party cloud providers and a range of software applications for different regions and functions - from secure back-up servers during the weeks following the breach, the company said.
Many ransomware groups now regularly resort to a method called double extortion, in which they not only lock up victims' IT systems but also threaten to leak sensitive data online if the organization doesn't pay by a certain time, which adds pressure and often results in a quick payout.
The attack on Zegna also reiterates the scenario that any organization, no matter how large or small, can be a target of ransomware attacks, he added.
News URL
https://threatpost.com/menswear-zegna-ransomware/179266/
Related news
- LockBit shows no remorse for ransomware attack on children's hospital (source)
- Hyundai Motor Europe hit by Black Basta ransomware attack (source)
- Ransomware attack forces 18 Romanian hospitals to go offline (source)
- Ransomware attack forces 21 Romanian hospitals to go offline (source)
- Ransomware attack forces 25 Romanian hospitals to go offline (source)
- Ransomware attack forces 100 Romanian hospitals to go offline (source)
- Trans-Northern Pipelines investigating ALPHV ransomware attack claims (source)
- LockBit claims ransomware attack on Fulton County, Georgia (source)
- Critical infrastructure software maker confirms ransomware attack (source)
- ScreenConnect servers hacked in LockBit ransomware attacks (source)