Data Breach Announced At Popular Photo Site Shutterfly
Online photography platform Shutterfly is the latest high-profile company to fall victim to a hacking attack. The company recently disclosed that in December 2021 they were targeted by the Conti gang, who successfully breached their system and initiated a ransomware attack. The company's breach notification statement was sent to impacted users and filed with the California Attorney General's Office in the aftermath of the attack.
Their statement reads in part as follows:
"The attacker both locked up some of our systems and accessed some of the data on those systems. This included access to personal information of certain people, including you.
We believe the access occurred on or about December 3, 2021. We discovered the incident on December 13, 2021."
Their statement goes on to say that a large amount of data was stolen, and that it included employee personal information. Some of the information taken were names, addresses, salaries, login credentials for an unspecified number of Corporate Services users, and a wide range of customer information including at least the last four digits of credit card numbers kept on file.
Unfortunately, we don't yet have a good account of exactly how many users, employees, or customers may have been impacted by the breach. What is known is that so far, the company has decrypted more than 4,000 devices and more than 120VMware ESXi servers belonging to Shutterfly. Also, the investigation into the matter is ongoing at this time.
If you are a Shutterfly customer who was impacted by the attack, you've almost certainly received a copy of the official breach notification at this point. If you're a customer and you haven't received one, you may want to reach out to the corporate office to check the status of your account.
Finally, out of an abundance of caution, if you have an account with Shutterfly you should probably change your password right away. If you're using that same password on other web properties, change those too. This will certainly not be the last such incident we hear about in 2022, so stay vigilant out there.
At Dallas Network Services, we work with a large variety of businesses based in Dallas and Fort Worth (DFW) and the surrounding area such as Addison, Plano, Carrollton, Denton, Richardson, Garland and beyond. We also extend our reach outside the area to include all Texas and other states. We provide on premise server support including Microsoft Exchange as well as Cloud computing services and hosted solutions. We specialize project services, network support, desktop support and voice over IP (VoIP) business phones. Our fully managed IT services will improve your business reliability as well as your bottom line. Contact us today at www.dallasnetworkservices.com chat or call 214-696-6630. #DNS#dallasnetworkservices#techsupport#hacker#cybersecurity#MSP