Security News > 2023 > July > Estée Lauder beauty giant breached in two separate ransomware attacks

Two ransomware actors, ALPHV/BlackCat and Clop, have listed beauty company Estée Lauder on their data leak sites as a victim of separate attacks.

In a Security Exchange Commission filing on Tuesday, The Estée Lauder Companies confirmed one of the attacks saying that the threat actor gained access to some of its systems and may have stolen data.

The threat actor started leveraging the vulnerability when it was a zero-day in late May and claimed to have breached hundreds of companies for data theft extortion.

On their data leak site, Clop ransomware lists Estée Lauder with the simple message "The company doesn't care about its customers, it ignored their security!!!" and a note that they have more than 131GB of the company's data.

On Tuesday, BlackCat also added Estée Lauder to their list of victims but the entry is accompanied by a message showing the threat actor's dissatisfaction towards the company's silence to their extortion emails.

Referring to the security experts that Estée Lauder brought in to investigate, BlackCat said that despite the company using Microsoft's Detection and Response Team and Mandiant the network remained compromised and they still had access.

News URL

https://www.bleepingcomputer.com/news/security/est-e-lauder-beauty-giant-breached-in-two-separate-ransomware-attacks/