French Connection (FCUK), a clothing company, is the latest victim of a ransomware attack linked to the REvil gang.
The attackers seem to have found a vulnerability in the company’s back-end systems, which allowed them to grab internal data. Breached details include passport and identification card scans, the existence of which has been confirmed by TheRegister.
French Connection Ransomware Attack
French Connection was founded in 1972 as a women’s clothing line, and has since expanded into a diverse fashion brand offering menswear, watches, and other accessories.
The company sent a statement to TheRegister, where it confirmed the cyberattack that affected its back-end servers.
Fortunately, the brand’s front-end servers, including the ones processing payments, have been spared in the attack.
According to the said statement shared with the security media, “as soon as it became aware of the breach, the company took immediate action, suspending all affected systems and engaging third-party experts to assist with resolving the situation”. The company is currently focused on restoring its systems. There seems to be no evidence to suggest that customer data has been affected during the attack.
It should be noted, however, that ransomware gangs such as REvil tend to offer breached data for sale, demanding payment from original owners. So far, FCUK has neither confirmed nor denied such extortion.
Even though customer data hasn’t been affected, there’s also the risk of the so-called triple extortion, which is a rising trend in the ransomware business.
According to Check Point’s latest ransomware report, ransomware operators are now relying on the so-called triple extortion, where they are demanding ransom payments from the victim’s customers, partners, or other third parties related to the initial attack.
It is also noteworthy that in April 2021, one of Apple’s key suppliers, Quanta Computer Inc, struggled against a high-profile ransomware attack also carried out by the REvil gang. The attack took place while Apple was revealing its newest line of iPads and iMacs, Bloomberg recently reported. The hackers were attempting to “shake down Apple” by demanding a ransom in the amount of $50 million to be paid within a specific deadline.