Cyberattack on MAJUHOME Concept by DragonForce: A Threat to Customer Data Security

Incident Date:

April 21, 2024

World map

Overview

Title

Cyberattack on MAJUHOME Concept by DragonForce: A Threat to Customer Data Security

Victim

MAJUHOME Concept

Attacker

Dragonforce

Location

Telok Panglima Garang, Malaysia

, Malaysia

First Reported

April 21, 2024

Ransomware Attack on MAJUHOME Concept by DragonForce

Attack Overview

A prominent online furniture retailer based in Malaysia, MAJUHOME Concept, recently fell victim to a ransomware attack by the cybercriminal group DragonForce. The attack targeted their online platform, leading to the exfiltration of approximately 6.84 GB of undisclosed data.

Company Profile

MAJUHOME Concept operates as an online furniture mall offering a wide range of home furnishings. With a focus on providing free shipping and assembly within the Klang Valley for orders over RM1,000 ($200) and flexible payment options, MAJUHOME stands out in the Malaysian retail furniture market. Their business model emphasizes customer convenience and accessibility, making them a significant player in the industry.

Vulnerabilities and Target Attractiveness

The retail sector, particularly online commerce platforms like MAJUHOME, often holds vast amounts of customer data, making them attractive targets for cybercriminals. The combination of financial transactions and personal customer information presents a lucrative opportunity for ransomware attacks. The specifics of MAJUHOME’s cybersecurity measures are not publicly detailed, which is common in the industry, yet this lack of transparency can also contribute to vulnerabilities.

Ransomware Group Profile: DragonForce

DragonForce is known for its double extortion tactic, which not only involves encrypting the victim's data but also threatening to release it unless a ransom is paid. This method has been effectively used in their previous attacks, including the notable incidents involving the Ohio Lottery and , most recently, the government of Palau. Their rapid rise and connection to previously leaked ransomware tools highlight a significant escalation in the threat landscape.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.