October 17, 2022
International wholesale giant METRO is experiencing infrastructure outages and store payment issues following a recent cyberattack.
The company’s IT team is currently investigating the incident with the help of external experts. Even though its stores are still operating, METRO says that it was forced to set up offline payment systems and that online orders are delayed.
June 27, 2017
Britain’s WPP, the world’s biggest advertising agency, said on Tuesday it had been hit by a cyber attack. WPP Plc’s Chief Executive Officer Martin Sorrell, at a Bloomberg event in Davos half a year later stated: “WPP shut down all its systems when it was hacked and communicated internally on an hourly basis”, Sorrell said. Several weeks before WPP has hacked, a WannaCry ransomware attack infected more than 300,000 computers across 150 countries. Microsoft Corp. and others responded quickly by providing software updates, including to WPP, but to no avail, Sorrell said. “Those patches couldn’t stop the malware attack that we had in June”.
November 15, 2013
The Target Corp hackers managed to break into its payments network by first breaching a “data connection” between the U.S. retailer and its HVAC systems contractor. The data connection was used by the vendor, Fazio Mechanical Services, to bill Target and exchange contract and project management information with the retailer. Target, the third-largest U.S. retailer, has said the hackers stole about 40 million credit and debit card records, as well as personal information, such as addresses and phone numbers, belonging to about 70 million customers.
Many in the industry immediately recognized that a similar attack could happen with credentials for a BAS or energy management system, especially if a third-party company is performing a remote monitoring service.
June 18, 2022
Minneapolis, MN-based security provider, Entrust, suffered a cyber attack last month where some data ended up stolen.
Entrust provides security solutions for user and machine identities, payments, and digital infrastructure.
Todd Wilkinson, entrust president and chief executive released a statement discussing the incident.
“I am writing to let you know that on June 18, we learned that an unauthorized party accessed certain of our systems used for internal operations. We have been working tirelessly to remediate this situation since that moment.”
July 20, 2021
Business services provider, Morley Companies Inc., just disclosed a ransomware attack and data breach it suffered this past summer affecting over 500,000 workers.
Saginaw, Michigan-based Morley suffered the attack on July 20 last year, according to a report filed with the Maine Office of the Attorney General. The company, which said it discovered the attack January 26, offers business services to Fortune 500 and Global 100 firms, including meeting management, back-office processing, contact centers, and the creation of trade show exhibits.
August 11, 2021
Accenture said it has fully restored certain affected systems, after a hacker group attacked the consulting firm using LockBit ransomware and threatened to release the data in several hours.
“Through our security controls and protocols, we identified irregular activity in one of our environments. We immediately contained the matter and isolated the affected servers,” Accenture said in a Wednesday statement. “We fully restored our affected systems from backup, and there was no impact on Accenture’s operations, or on our clients’ systems.”
July 2, 2021
While the supply-chain ransomware attack Friday leveraging a vulnerability in Kaseya VSA software against multiple managed service providers (MSPs) and their customers remains under investigation, small- to midsize manufacturing companies could feel the impact.
May 16, 2021
AXA Partners, the international subsidiary of AXA insurance group, ended up hit by ransomware attacks in four countries, company officials said.
The attack comes on the heels of AXA, among Europe’s top five insurers, saying it will stop writing cyber-insurance policies in France that reimburse customers for extortion payments made to ransomware criminals. The Paris-based group said it was suspending the option in France only in response to growing concern that such reimbursements encourage cyber criminals to demand ransom from companies they prey on, crippling them with malware. Once victims of ransomware pay up, criminals provide software keys to decode the data.
March 21, 2021
Insurance provider Chicago, IL-based CNA Financial ended up hit by what it called a “sophisticated” cybersecurity attack on Sunday, company officials said.
“On March 21, 2021, CNA determined that it sustained a sophisticated cybersecurity attack. The attack caused a network disruption and impacted certain CNA systems, including corporate email,” the company said in an advisory.
The Chicago-based company paid the hackers about two weeks after a trove of company data was stolen, and CNA officials were locked out of their network, according to two people familiar with the attack who asked not to be named because they weren’t authorized to discuss the matter publicly.
March 20, 2021
Manufacturing shut down for IoT solution provider, Sierra Wireless, as the company fell victim to a ransomware attack on its internal IT systems Saturday, company officials said.
Once the company learned of the attack, its IT and operations teams immediately implemented measures to counter the attack in accordance with established cybersecurity procedures and policies that were developed in collaboration with third-party advisors.