In 2020, hackers worldwide have increasingly gravitated to ransomware as their preferred method of attack. This year, dozens of high-profile, successful attacks on companies worldwide have occurred.

Whirlpool, one of the largest home appliance manufacturers in the world, is the latest company to fall victim to this type of attack.

The company is one of the titans in the industry, with nearly sixty locations scattered around the world and employing about 80,000 people. Unfortunately, their impressive size made them a tempting target. In their case, the hackers that breached their system utilized the Nefilim ransomware strain, managing to exfiltrate various sensitive data before encrypting files on several company servers.

It has become increasingly common for hacking groups to publish some or all of the data they steal to hurt the company they attacked, and that's precisely what happened in this case. Thus far, the leaked data has included documents relating to accommodation requests, medical information requests, background checks, employee benefits, and more.

There's no doubt that the publication of these documents damages the company. Still, based on Whirlpool's investigation into the matter, the scope and scale of the data breach were relatively small. Only a handful of corporate servers were infected, and the encrypted files didn't impact the company's operations.

It should also be noted that the hackers who control the Nefilim strain aren't active, tending only to make occasional attacks targeting more giant corporations. Other recent victims include Luxottica, The Dussman Group, Orange S. A., and the Toll Group.

All the impacted Whirlpool servers have been fully restored, but the damage is done. It remains to be seen if the hackers behind the attack will publish more data or if they've already released everything they stole. Stay vigilant. Your firm could be next.

Used with permission from Article Aggregator