SECURITY
SECURITY
SECURITY
Clothing retailer Guess informs customers of February data breach
Clothing retailer Guess? Inc. has informed affected customers of a data breach in February that involved the theft of data.
The information was detailed in a letter sent to customers, according to Bleeping Computer today, that states it discovered a “cybersecurity incident designed to encrypt files and disrupt business” on Feb. 19. Without Guess using the specific word, that’s a description of a ransomware attack.
The company noted that after launching an investigation, it was determined that there was unauthorized access to certain Guess systems between Feb. 2 and Feb 23. On May 26, the investigation then determined that personal information relating to individuals may have been accessed or acquired by an “unauthorized actor.” That information includes Social Security numbers, driver’s license numbers, passport numbers and financial account numbers.
In a usual check box to a ransomware attack response, Guess said it had notified law enforcement, implemented additional security measures and offered complimentary one-year membership to a credit protection service.
Although Guess hasn’t named the group the attack, DataBreach.net attributed the attack on Guess to the DarkSide ransomware group in April. That group was initially best known for donating some proceeds from its ransomware attacks to charity in October but became far better known after being tied to the high-profile breach at Colonial Pipeline Co. in May.
DarkSide subsequently announced that it was ending operations the same month, which begs the question: Where did the Guess data go?
DataBreaches.net noted that when it first spoke to DarkSide operators in April, the group claimed to have 200 gigabytes of data stolen from Guess but that data was never dumped in the open. “Is it in the hands of an affiliate? Was it on a server that got seized?” DataBreaches.net wrote before adding that DarkSide did say it would hand over its decryption tools to affiliates.
Whether those affiliates received a decryption key for the Guess data is not known. That Guess is just now informing customers of the data breach could be a coincidence, or perhaps the data has now been decrypted and accessed by a DarkSide affiliate.
Photo: Bargainmoose/Flickr
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
