NYDJ Apparel Hit by RansomHub: 411GB Data Encrypted
Incident Date:
July 31, 2024
Overview
Title
NYDJ Apparel Hit by RansomHub: 411GB Data Encrypted
Victim
NYDJ Apparel, LLC
Attacker
Ransomhub
Location
First Reported
July 31, 2024
RansomHub Ransomware Attack on NYDJ Apparel, LLC: A Detailed Analysis
NYDJ Apparel, LLC, a prominent women's apparel brand based in Los Angeles, California, has recently fallen victim to a ransomware attack orchestrated by the cybercriminal group known as RansomHub. The attack has resulted in the encryption of 411GB of the company's data, potentially disrupting operations and threatening sensitive information.
About NYDJ Apparel, LLC
Founded in 2003, NYDJ Apparel, LLC, originally known as "Not Your Daughter's Jeans," specializes in crafting premium denim and other clothing items designed to empower women of all shapes and sizes. The company is particularly renowned for its innovative "Lift Tuck® Technology," which provides a flattering fit by sculpting the body and creating a smoother silhouette. This technology has established NYDJ as a leader in the women's denim market, making it the top-selling women's denim brand in U.S. department stores as of 2016.
NYDJ's product offerings extend beyond jeans to include a diverse range of stylish apparel such as blouses, tops, shorts, and trousers. The company emphasizes inclusivity, providing options for plus sizes and petite fits, and is committed to sustainable practices. With annual revenues of approximately $29 million and around 112 employees, NYDJ distributes its products through better department stores and boutiques across 31 countries, alongside its online platform, NYDJ.com.
Attack Overview
The ransomware attack on NYDJ Apparel, LLC was claimed by RansomHub via their dark web leak site. The attackers successfully compromised and encrypted 411GB of the company's data. The specific demands of the attackers have yet to be disclosed, but the incident highlights the growing threat of ransomware to businesses of all sizes. The attack could potentially disrupt NYDJ's operations and expose sensitive information, including customer data and proprietary business information.
About RansomHub
RansomHub is a relatively new ransomware group that has emerged in the cyber threat landscape. Believed to have roots in Russia, RansomHub operates as a Ransomware-as-a-Service (RaaS) group, with affiliates receiving 90% of the ransom money and the remaining 10% going to the main group. The group has targeted various countries, including the US, Brazil, Indonesia, and Vietnam, without following a specific pattern. RansomHub's ransomware strains are written in Golang, a language choice that may indicate a trend towards future ransomware developments.
Potential Vulnerabilities
NYDJ Apparel, LLC, like many retail companies, may have vulnerabilities that make it an attractive target for ransomware groups. These could include outdated software, insufficient cybersecurity measures, and a lack of employee training on recognizing phishing attempts. The company's extensive online presence and the handling of sensitive customer data further increase the risk of being targeted by cybercriminals.
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.