The ransomware gang behind the recent attack on Sopra Steria is making new headlines this week, this time for an attack on the world’s top office furniture maker, Steelcase.
An unnamed source in infosec reportedly told Bleeping Computer last week to watch for confirmation that Steelcase had suffered a ransomware attack.
The group behind the hack was none other than the infamous Ryuk operatives known to infect companies with the BazarLoader and TrickBot trojans.
The company has confirmed the incident, without naming names, in a filing with the US Securities and Exchange Commission (SEC).
“On October 22, 2020, Steelcase Inc. (the “Company”) detected a cyberattack on its information technology systems,” the disclosure reads. “The Company promptly implemented a series of containment measures to address this situation including temporarily shutting down the affected systems and related operations.”
“The Company is actively engaged in restoring the affected systems and returning to normal levels of operations,” Steelcase adds.“At this time, the Company is not aware of any data loss from its systems or any other loss of assets as a result of this attack. Although cyberattacks can be unpredictable, the Company does not currently expect this incident will have a material impact on its business operations or its financial results.”
Not being aware of any data loss doesn’t equate to no data loss, so it’s not out of the question that Ryuk actors could claim responsibility for the hack and try to extort Steelcase by threatening to sell or publish their data.
Steelcase’s core business pillar is production of office furniture and is the largest such player in the industry, with facilities and factories in the Americas, Europe, Asia, the Middle East, Australia and Africa. The company also churns out architectural and technology products for various work and academic environments, as well as for the healthcare and retail industries.