The BlackCat hackers enjoyed hacking the American distributor's systems so much that they did it again.
The American medical giant Henry Schein has already faced the second cyberattack in the last month from the ALPHV/BlackCat ransomware gang. This attack followed the first hack of their network in mid-October.
Henry Schein is a major Fortune 500 provider of medical products and services. The company operates in 32 countries and reported revenue of over $ 12 billion in 2022.
The first attack was revealed on October 15, when the company shut down some systems to prevent the malware from spreading further. A little less than a month later, on November 13, the company reported that as a result of the October attack, confidential customer data could have been stolen, including their bank account numbers, credit cards, etc.
On November 22, the company announced that some of its apps and e-commerce platform were again disabled as a result of a new attack, for which the BlackCat group is also responsible.
To date, the company has restored its trading platform in the United States and expects the platforms to be restored soon in Canada and Europe. In the areas affected by the incident, the company continues to accept orders through alternative channels, so the business of the medical giant was not seriously affected.
The BlackCat group added Henry Schein to its darknet leak site, claiming to have hacked into the company's network and allegedly stolen 35 terabytes of confidential data. According to the statement of cybercriminals, after unsuccessful negotiations in late October, they re-encrypted the company's devices when it had almost restored all its systems.
The BlackCat hackers said that "despite ongoing discussions with the Henry Schein team, we have received no indication that they are willing to prioritize the security of their customers, partners, and employees, let alone protect their own network."
"As of midnight today, some of the internal payroll data and shareholder folders will be published on our blog. We will continue to publish more data on a daily basis," the cybercriminals concluded.
ALPHV / BlackCat, which appeared in November 2021, is considered a renamed version of the well-known DarkSide/BlackMatter band. Originally known as DarkSide, the group gained worldwide attention after the attack on the Colonial Pipeline, which sparked extensive law enforcement investigations. The FBI links this group to more than 60 cyberattacks on organizations around the world from November 2021 to March 2022.
The American medical giant Henry Schein has already faced the second cyberattack in the last month from the ALPHV/BlackCat ransomware gang. This attack followed the first hack of their network in mid-October.
Henry Schein is a major Fortune 500 provider of medical products and services. The company operates in 32 countries and reported revenue of over $ 12 billion in 2022.
The first attack was revealed on October 15, when the company shut down some systems to prevent the malware from spreading further. A little less than a month later, on November 13, the company reported that as a result of the October attack, confidential customer data could have been stolen, including their bank account numbers, credit cards, etc.
On November 22, the company announced that some of its apps and e-commerce platform were again disabled as a result of a new attack, for which the BlackCat group is also responsible.
To date, the company has restored its trading platform in the United States and expects the platforms to be restored soon in Canada and Europe. In the areas affected by the incident, the company continues to accept orders through alternative channels, so the business of the medical giant was not seriously affected.
The BlackCat group added Henry Schein to its darknet leak site, claiming to have hacked into the company's network and allegedly stolen 35 terabytes of confidential data. According to the statement of cybercriminals, after unsuccessful negotiations in late October, they re-encrypted the company's devices when it had almost restored all its systems.
The BlackCat hackers said that "despite ongoing discussions with the Henry Schein team, we have received no indication that they are willing to prioritize the security of their customers, partners, and employees, let alone protect their own network."
"As of midnight today, some of the internal payroll data and shareholder folders will be published on our blog. We will continue to publish more data on a daily basis," the cybercriminals concluded.
ALPHV / BlackCat, which appeared in November 2021, is considered a renamed version of the well-known DarkSide/BlackMatter band. Originally known as DarkSide, the group gained worldwide attention after the attack on the Colonial Pipeline, which sparked extensive law enforcement investigations. The FBI links this group to more than 60 cyberattacks on organizations around the world from November 2021 to March 2022.
