TomTom, a global mapping and location giant, has taken proactive measures to address the impact of the recent MOVEit file transfer system attacks, as disclosed by the Cl0p ransom group.
Alongside TomTom, well-known companies like Pioneer Electronics and Autozone in the US were also named as victims of the cyberattack. The Cl0p group claimed to have stolen a significant amount of data, including 82GB from TomTom and an additional cache of information from their archives. TomTom responded promptly to the breach, informing Cybernews that they were immediately aware of the data breach and had taken all necessary security precautions to safeguard the compromised data.
The extensive client list of TomTom, which includes prominent names like Uber, Verizon, Microsoft, and major automotive manufacturers such as BMW, Maserati, Volkswagen, Renault, Toyota, and Mazda, adds significant concern to the scale of the attack. The Cl0p gang’s leak page also boasts having 106GB of stolen data and archives from Pioneer Electronics. Cybernews has attempted to contact both Pioneer Electronics and Autozone for a response but hasn’t received a reply at the time of reporting.
Additionally, the MOVEit Transfer software, used by thousands of companies worldwide for secure file transfer, was exploited by Cl0p through a zero-day vulnerability in May.
As the situation unfolds, new evidence indicates that the pro-Russian gang behind Cl0p is still operating within Ukrainian borders, raising further security concerns. The gang threatened to publish victims’ names and stolen data if they failed to negotiate and pay a ransom demand by June 14th.
While the list of victims keeps growing, the impact has reached major organizations like Shell Global, Shutterfly, Warner Bros Discovery, AMC Theatres, Honeywell, Choice Hotels’ Radisson Americas chain, and Crowe accounting advisory firm. Cybernews has confirmed that ING Bank, Deutsche Bank, Postbank, Comdirect, and other major European banks were also affected through a shared third-party vendor, Majorel, highlighting the far-reaching consequences of the MOVEit attacks. With the FBI issuing a $10 million bounty on the Cl0p gang, the urgency to address cybersecurity vulnerabilities has never been greater in the face of relentless and sophisticated cyber threats.
