Toy Company Mattel Was Latest Victim Of Ransomware Attack

November 14, 2020

Written by wukovits

When you were growing up, your parents probably bought you all sorts of toys made by Mattel. From Hotwheels to Barbie to the full line of Toy Story toys and more, Mattel is a global force in the world of toys.

In fact, they are the second largest toy maker in the world, with more than 24,000 employees and gross revenue of nearly six billion dollars in 2019.

On July 28th, 2020, the company’s network was successfully breached and a strain of ransomware deployed against them, which encrypted some of the company’s files and caused disruptions in the firm’s ongoing operations.

The company released an official disclosure about the incident which reads in part, as follows:

“On July 28, 2020, Mattel discovered that it was the victim of a ransomware attack on its information technology systems that caused data on a number of systems to be encrypted. Promptly upon detection of the attack, Mattel began enacting its response protocols and taking a series of measures to stop the attack and restore impacted systems. Mattel believes it has contained the attack and, although some business functions were temporarily impacted, Mattel was able to restore its critical operations.”

Part of the company’s response was to launch a forensic investigation in cooperation with law enforcement. That process has been completed, and based on its conclusion, Mattel updated their initial disclosure. It now says that it does not appear that any customer, supplier, consumer or employee data was exfiltrated by the hackers.

Of interest, neither the initial disclosure or the update gave any indication of the specific ransomware strain used, or the exact scale of the impact. Although there’s circumstantial evidence that suggests the strain in question was Trickbot.

Whatever the strain, the bottom line is that no customer data appears to have been stolen. So if you have an account on Mattel’s website, there’s nothing you need to do, except be aware that the attack occurred.

Used with permission from Article Aggregator

Related Articles

Some Amazon Device Features May Have Security Risks

Have you heard of Amazon Sidewalk? If not, it's definitely something you should be aware of. Depending on your point of view, the new feature, which was enabled by default on a wide range of Amazon devices by default on June 8 of this year (2021) is either...

Email Unsubscribe Scam Can Easily Fool Any User

Scammers are increasingly relying on a tried and true bit of social engineering to fool unsuspecting users into unwittingly signing up to receive a flood of additional spam email. They accomplish this by blasting out an email asking recipients if they wish to...

Update VMWare Software Immediately To Avoid Possible Attack

The US Cybersecurity and Infrastructure Security Agency recently issued a warning to all companies running VMware Vcenter Server and VMware Cloud Foundation. They are asking them to download and apply the latest security patches as soon as possible because attackers...

Send us a message

Your message was sent.

Thank you for contacting Bayou Technologies. We'll be in touch soon!

Need help? support-icon