Brown-Forman, one of the largest U.S. spirits and wine company suffered a cyber-attack. The threat actors managed to copy 1TB of confidential data which they had decided to sell to the highest bidder the most important info and leak the rest.
The company headquartered in Louisville, Kentucky, holds world-known whiskey and scotch brands like Jack Daniel’s, Woodford, Old Forester, Collingwood, Glenglassaugh, and Glendronach; Herradura, El Jimador, and Pepe Lopez tequila; Finlandia vodka, and Sonoma-Cutrer wines.
Sodinokibi (REvil) ransomware operators announced that they had compromised Brown-Forman’s computer network and spent more than a month examining user services, cloud data storage, and general structure.
The data stolen includes confidential information about employees, company agreements, contracts, financial statements, and internal correspondence.
REvil published several screenshots of the files with names, directory trees and internal conversations between some employees on their leak site. These documents date as far back as 2009.
The ransomware operators also published screenshots of database backup entries as recent as July 2020.
Brown-Forman confirmed the attack adding that there is a strong suspicion that data was stolen from their systems.
According to a spokesman at the company, they believe some information, including employee data, was impacted. They are working with law enforcement, as well as world-class third-party data security experts, to mitigate and resolve this situation at the earliest.
Brown-Forman upon discovering the attack acted quickly and stopped their systems from being encrypted.
Image Credits : Foodable Network