The premium Italian menswear brand Boggi Milano has confirmed that was hit with a ransomware attack. Representatives of the clothing line said that an investigation is under way and that the company is cooperating with Italian authorities.
The hacker group called Ragnarok bragged on its Dark Web blog that they compromised Boggi Milano servers and stole about 40 gigabytes of data, including human resource files such as salary information, payment PDFs, vouchers, tax documents and more. No one has revealed how much Ragnarok wanted to return the files.
Ransomware is a type of malware that locks computers and prevents users from accessing their system or private files, demanding a payment in order to get the access back. Unlike years ago, when payments were to be sent via snail mail, today organizations targeted with ransomware must pay the ransom via cryptocurrency or credit card. The costs to get the decryption key can range from a few hundred dollars to thousands.
Ransomware is today among the most popular threats characterizing the cybersecurity landscape for two main reasons: first of all, it is very easy to implement and, secondly, it allows to make an easy profit.
According to Clusit (the Italian Association for Cybersecurity), in 2020 cyber-attacks were mainly carried out using Malware (42%), among which the so-called Ransomware stands out. This type of malware is spreading rapidly, thus having been used in almost a third of all the attacks performed in Italy during the past year.
The ransomware attack like the one that happened to Boggi Milano is one of many, that hit fashion and other brands all around Italy and beyond. Here are a few tips on how to prevent a ransomware attack:
A Boggi Milano shop in Nice, France. Photographer: Sebastien Nogier/EPA-EFE/Shutterstock
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.