Randstad confirmed that a cyberattack had taken place by Egregor ransomware group that has led to “unauthorised and unlawful access” to data.
Randstad confirmed that a cyberattack had taken place by Egregor ransomware group that has led to “unauthorised and unlawful access” to data.
Netherlands- based Randstad is the world’s largest human resource conducting firm employing over 38,000 staff and offices in 38 markets. Randstad generated €23.7 billion in revenue for 2019.
Egregor ransomware published 1% of Randstad’s stolen data this week during a recent cyberattack. The leaked data is a 32.7MB archive consisting of 184 files including financial reports, spreadsheets, legal documents and other miscellaneous business documents.
As soon as threat actors disclosed their data, Randstad published a security notification confirming the attack by Egregor ransomware group and an internal investigation was launched along with third-party cybersecurity and forensic experts.
Randstad also admitted that only a limited number of servers were affected and that their network and business operations have continued to operate without any disruption.
The company confirmed that the data was stolen but is still investigating the type of data stolen and whether it contained any details related to its customers or employees.
At this time, the firm believes that the data belonging to their operations in the US, Poland, Italy, and France was stolen.
"To date, our investigation has revealed that the Egregor group obtained unauthorised and unlawful access to our global IT environment and certain data, in particular related to our operations in the US, Poland, Italy and France," disclosed Randstad.
"They have now published what is claimed to be a subset of that data. The investigation is ongoing to identify what data has been accessed, including personal data, so that we can take appropriate action with regard to identifying and notifying relevant parties."
Egregor steals and then starts to publish a little of stolen data which is easily traceable to the victim organisation as proof. The ransomware group then demands a ransom sum in exchange for not releasing more data.
Egregor attacked other companies including Kmart, Ubisoft, Barnes and Noble and Cencosud.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?