Italian luxury fashion brand, Moncler confirmed that they suffered a data breach. They found files were stolen by the AlphV/BlackCat ransomware operation in December and published them on the dark web.
The last week of 2021 is when the attack unfolded. The luxury fashion brand announced an interruption in its IT services but assured that the attack would result in nothing more than a short outage.
It took ten days for the company to release an update on the situation. They also started reactivating their logistic systems and prioritizing e-commerce shipments that had been delayed in shipping.
Moncler confirmed last Tuesday, in a statement shared with Bleeping Computer, that some data related to its employees, former employees, suppliers, consultants, business partners, and customers was leaked by the AlphaV (BlackCat) ransomware operation.
Moncler states that they rejected the idea of paying a ransom demand as it goes against their founding principles, leading to the publishing of the stolen data.
“With regard to information linked to customers, the company informs that no data relating to credit cards or other means of payment have been exfiltrated, as the company does not store such data on its systems.” explains the statement shared with BleepingComputer.
Moncler also warned that the "further possession or distribution of the stolen data would be considered a criminal offence."
"Moncler reminds that all information in the possession of cybercriminals is the result of illegal activities and that consequently, the acquisition, use and dissemination of the same constitutes a criminal offense." - Moncler.
The ALPHV ransomware gang published Moncler's data on their data leak and also indicated that they demanded $3 million not to release the data.
The stolen data includes earning statements, spreadsheets with what appears to be customer information, invoices, and other documents.
The group is now allegedly looking for a buyer interested in data on Moncler’s “rich customers”.
https://www.techradar.com/news/moncler-confirms-ransomware-attack-and-data-breach