Brother
Professional
- Messages
- 2,590
- Reaction score
- 483
- Points
- 83
How long will supply problems and promises to restore operations last?
American stationery retailer Staples suffered a cyberattack that forced the company to disable a number of systems. This step was taken in order to minimize the impact of the breach and protect customer data.
Staples operates 994 stores in the United States and Canada and has 40 distribution centers across the country. Reddit users were the first to report problems with Staples internal systems, including the inability to access the Zendesk customer support system, employee VPN portals, email, and phone lines.
Employees of the company expressed their concern. One of them noted that he works in a store, and they do not have access to the necessary tools for work. Another added that "in my 20 years at Staples, I've never encountered anything like this."
In addition, there are unconfirmed reports that Staples employees were instructed to avoid signing in to Microsoft 365 using single sign-on (SSO) and that call center employees were allowed to go home for 2 days.
The company confirmed to BleepingComputer that it was forced to take protective measures to reduce cybersecurity risks after the Staples cybersecurity team identified the threat on November 27. The response resulted in disruptions to business processes, including order processing and delivery.
Staples stores continue to operate, but online orders may be processed with a delay because the relevant systems are still down. A notice has been posted on the Staples website apologizing for the unexpected outage and promising a speedy recovery.
BleepingComputer clarifies that no ransomware was used in the attack and the files were not encrypted. Staples 'prompt response, including disabling the network and VPN, may have prevented the hackers' ultimate goals from being achieved. It is not yet known whether the data was stolen during the attackers ' access to the Staples network. In case of data theft, an extortion attempt by cybercriminals may follow.
Staples has already been the victim of a cyberattack. In December 2014, representatives of the company said that after the infection of the organization's PoS terminals, there is a possibility of compromising more than 1 million customer payment cards. At the same time, the attack occurred back in October 2014.
In March 2023, the LockBit group announced a cyber attack on the Staples stationery supplier Essendant, which led to the shutdown of the company's operations. As a result of the cyberattack that occurred on March 6, Essendant was unable to process and execute online orders, and customers were unable to create orders or contact customer support. All deliveries were also suspended.
American stationery retailer Staples suffered a cyberattack that forced the company to disable a number of systems. This step was taken in order to minimize the impact of the breach and protect customer data.
Staples operates 994 stores in the United States and Canada and has 40 distribution centers across the country. Reddit users were the first to report problems with Staples internal systems, including the inability to access the Zendesk customer support system, employee VPN portals, email, and phone lines.
Employees of the company expressed their concern. One of them noted that he works in a store, and they do not have access to the necessary tools for work. Another added that "in my 20 years at Staples, I've never encountered anything like this."
In addition, there are unconfirmed reports that Staples employees were instructed to avoid signing in to Microsoft 365 using single sign-on (SSO) and that call center employees were allowed to go home for 2 days.
The company confirmed to BleepingComputer that it was forced to take protective measures to reduce cybersecurity risks after the Staples cybersecurity team identified the threat on November 27. The response resulted in disruptions to business processes, including order processing and delivery.
Staples stores continue to operate, but online orders may be processed with a delay because the relevant systems are still down. A notice has been posted on the Staples website apologizing for the unexpected outage and promising a speedy recovery.
BleepingComputer clarifies that no ransomware was used in the attack and the files were not encrypted. Staples 'prompt response, including disabling the network and VPN, may have prevented the hackers' ultimate goals from being achieved. It is not yet known whether the data was stolen during the attackers ' access to the Staples network. In case of data theft, an extortion attempt by cybercriminals may follow.
Staples has already been the victim of a cyberattack. In December 2014, representatives of the company said that after the infection of the organization's PoS terminals, there is a possibility of compromising more than 1 million customer payment cards. At the same time, the attack occurred back in October 2014.
In March 2023, the LockBit group announced a cyber attack on the Staples stationery supplier Essendant, which led to the shutdown of the company's operations. As a result of the cyberattack that occurred on March 6, Essendant was unable to process and execute online orders, and customers were unable to create orders or contact customer support. All deliveries were also suspended.
