Menu
On Sunday 26th of December 2021, Shutterfly, a personalized photography giant disclosed they had recently experienced a ransomware attack on parts of their network. Although they have stated that the incident has not impacted their Shutterfly.com, Snapfish, TinyPrints or Spoonflower sites. However, portions of their Lifetouch and BorrowLenses business, Groovebook, manufacturing and some corporate systems have been experiencing interruptions because of the ransomware attack.
“We do not store credit card, financial account information or the Social Security numbers of our Shutterfly.com, Snapfish, Lifetouch, TinyPrints, BorrowLenses, or Spoonflower customers, and so none of that information was impacted in this incident,” – Shutterfly.
Shutterfly also confirmed they have engaged third-party cybersecurity experts, informed law enforcement, and have been working around the clock to address the incident. The ransomware group responsible for the attack are Conti ransomware gang who have created a data leak page on their tor site that contains screenshots of files allegedly stolen during the ransomware attack, as part of their ” double-extortion” tactic. It is believed that there are negotiations going on between Conti and Shutterfly although Conti are said to be demanding millions of dollars as a ransom.
NCSC Threat Reports Feed© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.
