Targus, the well-known laptop computer bag and case producer, has been hit by a cyber assault that has interrupted its regular enterprise operations.
In an SEC submitting, Targus described discovering final Friday that hackers had gained unauthorised entry to its IT methods.
As a consequence, there was a “momentary interruption” to the enterprise’s operations as a part of what Targus describes its “proactive containment measures” to stop the hackers from inflicting extra issues.
Briefly, so as to lock the dangerous guys out of its community, Targus has been compelled to disable massive elements of its infrastructure.
The corporate says that it’s persevering with to analyze the incident and has sought help from exterior consultants. It additionally says that it doesn’t imagine that the incident will materially affect the corporate’s monetary outcomes.
Nevertheless, what Targus hasn’t instructed us is something concerning the nature of the assault. The one query everybody in all probability has proper now’s – so, was this a ransomware assault?
Targus hasn’t confirmed in its SEC advisory whether or not malware was concerned within the assault, not to mention ransomware. We simply don’t know if it’s ransomware or not.
However whether it is ransomware, chances are high that the attackers haven’t simply encrypted methods, however have additionally exfiltrated massive quantities of knowledge from Targus’s community and are threatening to launch it to the broader world if the corporate does not give in to the extortionists’ calls for.
With out SEC rules that got here into impact late final 12 months, we’d not have identified so rapidly concerning the issues Targus was experiencing.
Since December 15, 2023, US firms have been required to reveal potential materials cybersecurity incidents to the SEC inside 4 enterprise days, even when the total extent of an assault’s affect stays unknown.
Little doubt we’ll see extra firms following in Targus’s footsteps to adjust to SEC rules shortly after the invention of a cybersecurity incident. We may see extra ransomware gangs truly threaten their victims with SEC disclosure, in the event that they imagine it is going to pace up ransomware negotiations.
On the time of writing, no hacking teams have publicly claimed accountability for the assault in opposition to Targus.
