Ransomware, Threat Management

Cl0p, ALPHV/BlackCat claim separate attacks against Estee Lauder

BleepingComputer reports that U.S. multinational cosmetics company Estee Lauder was claimed to be compromised by the Cl0p and ALPHV/BlackCat ransomware gangs in separate attacks. Cl0p has admitted to exfiltrating more than 131GB of data belonging to Estee Lauder, which it may have obtained through the widespread exploitation of a vulnerability in the MOVEit Transfer file transfer app that began in late May. On the other hand, ALPHV/BlackCat disclosed on July 18 that it was able to infiltrate Estee Lauder's network despite protections offered by Mandiant and Microsoft's Detection and Response Team, and while none of its systems have been encrypted, it would divulge details regarding the data that may have been stolen from customers, suppliers, and employees should the cosmetics firm refuse negotiations. One of the attacks has been confirmed by Estee Lauder to have resulted in the compromise of some of its systems and possible data theft but while its filing with the Securities and Exchange Commission noted that it has already acted to mitigate and investigate the attack, details regarding the specific intrusion have been lacking.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.