Kraft Heinz has confirmed that their programs are working usually and that there isn’t any proof they had been breached after an extortion group listed them on a knowledge leak web site.
Kraft Heinz is likely one of the world’s largest meals and beverage firms, with over 37,000 staff working out of 40 nations. The corporate owns quite a few well-known manufacturers, together with Oscar Mayer, Kool-Assist, Philadelphia, Lunchables, Maxwell Home, and plenty of extra.
In a put up to Snatch extortion group’s information leak web site dated August sixteenth, however not made seen till right now, the risk actors declare that they breached Kraft Heinz.
When extortion teams record an organization on their information leak websites, it signifies that they stole information in a cyberattack and would quickly leak it if a ransom is just not paid.
Nevertheless, Snatch has not supplied proof of the breach, with the information part devoid of screenshots of stolen information.
In a press release to BleepingComputer, Kraft Heinz stated they’re investigating whether or not a cyberattack on a decommissioned advertising web site is said to Snatch’s claims however that they aren’t experiencing any points on their company community.
“We’re reviewing claims {that a} cyberattack occurred a number of months in the past on a decommissioned advertising web site hosted on an exterior platform, however are at present unable to confirm these claims,” a Kraft Heinz spokesperson advised BleepingComputer.
“Our inner programs are working usually, and we at present see no proof of a broader assault.”
Snatch, a ransomware gang which launched in 2018, was one of many first teams to arrange a knowledge leak web site to make use of stolen information as leverage of their extortion calls for.
In 2021, risk actors often called “Snatch Crew” arrange a brand new information leak web site, stating that they had been unaffiliated with the earlier ransomware group and didn’t carry out encryption assaults.
Nevertheless, a report by CISA disputes these claims, stating that information from confirmed ransomware victims have appeared on Snatch Crew’s web site together with information from different ransomware operations’ assaults.