December 11, 2023 at 12:55PM
Cold storage and logistics company Americold suffered a cyberattack in April, resulting in the theft of personal data of 129,000 employees and dependents. The attack, attributed to Cactus ransomware, forced a network shutdown. The breach involved theft of personal information and the group plans to release additional confidential documents. Americold also faced a ransomware attack in November 2020.
Key takeaways from the meeting notes are as follows:
– Over 129,000 employees and their dependents had their personal information stolen in an April cyberattack claimed by Cactus ransomware.
– The attack resulted in the company’s operations being affected, leading to the shutdown of its IT network to contain the breach and rebuild impacted systems.
– Data stolen by the attackers includes personal information such as name, address, Social Security number, driver’s license/state ID number, passport number, financial account information, and employment-related health insurance and medical information.
– Americold has also faced a previous cyberattack in November 2020, impacting various aspects of its operations.
– The Cactus ransomware group, responsible for the April 2023 attack, has leaked a 6GB archive of accounting and finance documents from Americold’s network.
– The ransomware group plans to release additional sensitive information, including human resources, legal, company audit information, customer documents, and accident reports.
– The Cactus ransomware is a new operation known for double-extortion attacks, involving both data theft and system encryption.
Additionally, it appears that an Americold spokesperson was not immediately available for comment at the time of the meeting.