Ransomware attack against Askul hits nearly 740K

Major Japanese office supplies retailer and logistics e-commerce company Askul Corporation has disclosed that almost 740,000 records had been stolen following a RansomHouse breach in October, BleepingComputer reports.

Most of the compromised data were business customer service records at nearly 590,000, followed by individual customer service details, information from business partners, and data from executives and employees, including those from Askul's group companies, according to the firm, which noted that pilfered data has already been subjected to long-term monitoring for potential misuse.

Investigation by Askul detailed that initial infiltration through stolen outsourced partner admin account credentials allowed network reconnaissance and authentication data gathering to breach its other servers. Numerous ransomware variants, some of which bypassed EDR signatures, have also been tapped by RansomHouse, which then erased backup files to hinder recovery, said Askul, which is still restoring order shipping and other systems affected by the intrusion.