Toy maker Mattel discloses ransomware attack

Toy maker Mattel discloses ransomware attack

US toymaker Mattel revealed today that it suffered a that crippled some functions, but the company says it recovered from the attack with no significant financial losses.

The incident took place on July 28, according to a 10-Q quarterly form the company filed with the US Securities Exchange Commission earlier today.

Mattel said that the ransomware attack was initially successful and resulted in the successful of some of its systems.

“Promptly upon of the attack, Mattel began enacting its protocols and taking a series of measures to stop the attack and restore impacted systems.

“Mattel contained the attack and, although some business functions were temporarily impacted, Mattel restored its operations,” the company explained.

For more than a year, ransomware gangs have been stealing and engaging in a double- scheme, threatening to upload the company’s data on public “leak sites” unless victims pay their ransom demand.

However, the toymaker said that a subsequent forensic investigation concluded that the ransomware gang behind the July intrusion did not steal “any sensitive business data or retail customer, supplier, consumer, or employee data.”

All in all, Mattel appears to have escaped the incident with only a short downtime and without any serious damages.

While companies like Cognizant said they expected to lose between $50 million and $70 million, and Norsk Hydro reported losses of at least $40 million following ransomware incidents, Mattel said the ransomware attack it suffered had “no material impact to [its] operations or financial condition.”


Leave a Reply