"Canadian Bookstore Chain Indigo Says Employee Data Stolen in Ransomware Attack"
Canadian bookstore chain Indigo recently confirmed that the personal information of both current and former employees was stolen in a ransomware attack last month. The hack took place on February 8 and resulted in the company taking down affected systems to contain the incident. The company was able to restore online payments and exchanges, and returns two weeks ago. The investigation into the incident has revealed that some employee data was compromised during the attack, but Indigo says it has no evidence that customer data was accessed. The company noted that no credit and debit card information was impacted. Indigo promised that should the investigation reveal that any customer data has been compromised, they will contact the affected individuals immediately. Indigo noted that the ransomware deployed during the attack was LockBit, which is known to be used by cybercriminals either located in Russia or with ties to Russian organized crime. The company says it has already started notifying impacted individuals of the incident but did not say how many were affected. Indigo currently operates more than 160 stores across Canada and has over 8,000 employees. Indigo stated that it has been working with Canadian authorities and the FBI to investigate the attack and that it does not plan to give in to the attackers’ ransom demands. The hackers have threatened to publish the stolen data on the dark web starting this week unless a ransom is paid.