On the 18th of January 2022, RR Donnelley, a leading integrated services company offering communications, commercial printing, and marketing to enterprise clients confirmed that data was stolen during the ransomware attack they have experienced back in December 2021. RR Donnelley stated they were not aware that any data from their networks was stolen back in December 2021 but they were made aware on January 15th when the Conti ransomware group claimed responsible with a post on their data leak website and were seen to have leaked 2.5GB of the allegedly stolen data.
“At this time, however, the Company has become aware that certain of its corporate data was accessed and exfiltrated, the nature of which is being actively examined. Based on information known to date, the Company believes the access and exfiltration was in connection with the previously disclosed systems intrusion and not a new incident” – RR Donnelley in an 8-K filing.
It was then observed that Conti soon removed the data from their public data leak website after RR Donnelley began further negotiations to prevent any further release of the stolen data. RR Donnelley has stated they are taking all appropriate measures to protect its and clients’ information.
“The Company is keeping clients informed of any relevant updates on an ongoing basis and plans to take all appropriate measures to safeguard the integrity of the Company’s data and clients’ information.” – RR Donnelley.
© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.