Indigo says hacked employee data may appear on ‘dark web’ this week, won’t pay ransom – National
Indigo, Canada’s largest bookstore chain, says it expects data of present and former workers stolen in a ransomware assault final month to appear on the “darkish internet” as quickly as Thursday, however won’t pay a ransom to the “criminals” accountable.
An updated section of Indigo’s website — which was stripped down in response to the breach on Feb. 8 — lists various causes for not paying the ransom, together with that there isn’t a method to assure the data won’t be launched even after the cost is acquired.
“Now we have been knowledgeable that the criminals answerable for this assault intend to make some or all the data they’ve stolen out there utilizing the darkish internet as early as Thursday, March 2, 2023,” the corporate says.
“We’re persevering with to work carefully with the Canadian police providers and the FBI in america in response to the assault.”
Story continues beneath commercial
Learn extra:
Indigo says ransomware assault breached data of present and former workers
The corporate additionally says it can’t be assured the ransom cost “wouldn’t find yourself within the arms of terrorists or others on sanctions lists.”
“Each US and Canadian legislation enforcement discourage organizations from paying a ransom because it rewards legal exercise and encourages others to have interaction in this exercise,” it provides.
The darkish internet refers to a subset of the web that requires a selected browser and different configurations to entry. The ominously named community is just not used solely for criminal activity, however is usually utilized by people trying to evade surveillance or legislation enforcement efforts.
Trending Now
Canadian cities chopping transit providers might trigger ‘dying spiral,’ researcher warns
Madeleine McCann: Polish police dispute lady’s claims she is lacking woman
Indigo has not publicly named the people or group answerable for the cyberattack, which resulted within the firm suspending on-line purchases and in-retailer credit score, debit and reward card funds.
The Toronto-primarily based retailer has repeatedly assured that no buyer data was compromised by the incident, saying it doesn’t retailer cost info.
2:10
Ransomware assault delays Toronto’s SickKids lab outcomes, techniques might be offline for weeks
Final week, the corporate publicly admitted for the primary time the assault had affected the data of present and former workers, after participating third-get together consultants to research and resolve the matter.
Story continues beneath commercial
Employees are being provided two years of credit score monitoring and id theft safety by client reporting company TransUnion of Canada without charge.
Data breaches have change into a well-known function on the company and public-sector panorama, with Canadian retailers experiencing a rising variety of cyberattacks in latest months.
Final week, Telus informed World Information it’s investigating latest claims that “a small quantity” of employee info in addition to firm supply code was posted to the darkish internet as a part of a data breach.
Learn extra:
Telus says it’s investigating claims employee info was posted on ‘darkish internet’
Sobeys guardian firm Empire Co. Ltd. additionally suffered a safety breach late final 12 months.
The incident in November left clients unable to fill prescriptions on the chain’s pharmacies for 4 days, whereas different in-retailer features like self-checkout machines, reward card use and the redemption of loyalty factors had been off-line for a few week.
The Liquor Management Board of Ontario skilled a “malicious” cybersecurity incident that affected on-line gross sales in January, and Toronto’s Hospital for Sick Kids noticed a ransomware assault disrupt operations in December.
© 2023 World Information, a division of Corus Leisure Inc.
