Nearly 130,000 individuals had their data confirmed to be compromised following a ransomware attack against major U.S. cold storage and logistics firm Americold in April, reports The Record, a news site by cybersecurity firm Recorded Future.
Investigation into the incident revealed that information from Americold's current and former employees and their respective dependents, including names, Social Security numbers, addresses, financial account details, driver's license/state ID numbers, passport numbers, and health insurance and medical details, were exposed following a systems breach on April 26, said the company in a filing with the Office of the Maine Attorney General.
The disclosure comes months after the firm was claimed to be attacked by the newly emergent Cactus ransomware operation, which was noted by Dragos to be behind nearly 7% of all cyberattacks against organizations in the industrial sector during the third quarter.
Before the April ransomware attack, Americold already had its systems disrupted by an intrusion in November 2020.
Utilization of Slack will be halted across most of Disney's businesses by the end of the year, said Disney Chief Financial Officer Hugh Johnston in a report in the Status media newsletter.
Attacks involved the utilization of Amazon S3 bucket and Content Delivery Network-hosted sites spoofing Google CAPTCHA pages and other verification sites, which include instructions that trigger a malicious PowerShell command downloading Lumma Stealer and proceeding with the exfiltration of sensitive device data.
Some of the 340 GB of sensitive data purportedly stolen from the City of Pleasanton, including names, birthdates, credit card numbers, and other personal and corporate financial information, have already been exposed by Valencia.