Moncler, an Italian luxury fashion brand, has admitted that they experienced a data breach after the BlackCat ransomware group conducted a December raid last year.
This high-end fashion store in Italy has confirmed the attack after the ransomware group posted their stolen data on the underground marketplace.
The campaign occurred in the final days of last year when Moncler announced a disruption in its IT services. However, the luxury fashion brand declared the interruption a temporary outage without consequences.
After more than a week, the company showed an update regarding the incident and reactivated its logistic systems to focus on the delayed shopping in their e-commerce shipments.
Unfortunately, Moncler admitted that the outage last year was caused by the BlackCat ransomware group, which may have impacted its employees, suppliers, partners, customers, and consultants.
The Moncler fashion brand has a steadfast presence against the threat of the ransomware group.
According to the Moncler fashion brand, they insisted that they rejected all ransom demands from the group as it goes against its principles, leading to the exposure of the stolen data.
Fortunately, the company informed its customers that there are no stolen data related to credit cards, payment transactions, or any monetary issue since the affected part of the company does not keep such information.
The Italian company also warned the threat actors that their constitution would consider the extensive possession or spread of the stolen data a criminal offence. Experts said that the statement from the affected entity would not bother the threat actors since they have been compromising different entities worldwide.
Moncler fashion brand also announced that they had reminded their company stakeholders and the Italian Data Protection Authority about the attack to mitigate further damage to their systems and customers.
Unfortunately, the BlackCat ransomware group exposed more data stolen data from the luxury store on their data leak website. Also, it elaborated that they demanded about $3 million not to publish the information.
The leaked data consisted of screenshots of earning statements, invoices, other documents, and multiple spreadsheets that seem to be related to every customer’s data. Today, the BlackCat ransomware group is trying to sell the data of wealthy customers to other malicious entities.
