Cyber Attack Spurs Malicious Communications to Hellmann Customers
Table of Contents
- By David Lukic
- Published: Dec 29, 2021
- Last Updated: Mar 18, 2022
Hellmann Worldwide Logistics is warning customers that they might be the target of social engineering attacks. Hellmann, a logistics provider, was struck by a ransomware attack earlier in December.
How Did the Attack Occur?
The attack on Hellman forced the company to take its IT systems off the web. The entire Hellmann IT system was deactivated on December 9. The digital attack resulted in the extraction of valuable data. However, Hellmann’s representatives have not stated how, exactly, the data was stolen.
What Type of Data was Stolen?
Hellmann’s digital security team is still studying the attack to determine the specific type of data that was stolen. Hellmann’s IT team is also investigating the breadth of the stolen data. The company has confirmed there is significant data leakage. Hellmann representatives also admitted some data was used in an unauthorized manner. More information about the scope of the attack and the specific information stolen will likely be released in the weeks ahead.
Why is the Attack Problematic for Hellmann Customers and Related Businesses?
Hellmann’s brass is warning its customers and its partners about the potential ramifications of the attack. The attack is likely to result in fraudulent emails. Hellmann customers and partners might also receive fraudulent phone calls due to the data breach. To be more specific, Hellmann’s leaders warn of emails and calls pertaining to requests to change bank details and phony payment transfers.
Hellmann executives are making it clear that customers’ information stored with the company is safe. However, it is recommended that the company’s customers and partners take the appropriate steps to ensure contact from individuals alleging to be representatives of the firm is legitimate.
The stolen information may be used for social engineering attacks, including phishing. The stolen information will likely be used to personalize malicious communications with latent motives.
How Did Hellmann Break the News?
Hellmann’s public relations representatives crafted a statement detailing the digital attack and the subsequent fallout. The company’s statement acknowledges reports pertaining to the attack. Hellmann representatives confirm the forensic investigation revealed data extraction from services prior to the systems temporarily being removed from the web. The statement details how removing the IT system was only a short-term solution that created an opportunity to reinforce safeguards and prevent additional digital attacks.
The statement explains how Hellmann is investigating the type of information the hackers extracted. The press release ends with a comment about how the company will inform third parties about how they are affected by the hack. Hellmann’s public relations team also noted it is in ongoing contact with government authorities to identify the hackers and resolve the matter without additional data being stolen.
What Should Hellmann’s Customers and Business Partners Do?
Hellmann’s executives encourage customers and business partners to reach out to the company’s IT personnel and customer service representatives for more information about the cyber attack. Those who have questions or concerns about the potential theft of their personal information are encouraged to contact Hellmann by emailing the company at Crisis-faq@hellmann.com.