Lately, a popular online picture editing and photography services provider, Shutterfly has suffered a Conti ransomware attack. According to a report, threat actors behind the attack stole confidential data of the company and locked thousands of devices.
Most people recognize Shutterfly with its main website; Shutterfly.com. However, Shutterfly is a company that also offers photography services through several brands like GrooveBook, BorrowLenses, Snapfish, and Lifetouch.
These brands target enterprise, consumer, and education clients.
Shutterfly suffered a Conti ransomware attack
According to BleepingComputer’s report, a source contacted them and revealed that Shutterfly services fell prey to the Conti ransomware attack. Additionally, the notorious gang claims to have encrypted more than 4000 devices and 120 VMware ESXi servers.
The report additionally notes that the source told the news website the gang has asked for millions of dollars as ransom money.
Meanwhile, the Conti gang has created a Shutterfly data leak page on its dark web site. As you can see in the screenshot below, the gang has uploaded screenshots stating about the ransomware and also threatened to make the page public if the ransom is not paid.
Meanwhile, BleepingComputer contacted Shutterfly for a statement on the Conti ransomware attack and got the following response:
“Shutterfly, LLC recently experienced a ransomware attack on parts of our network. This incident has not impacted our Shutterfly.com, Snapfish, TinyPrints, or Spoonflower sites. However, portions of our Lifetouch and BorrowLenses business, Groovebook, manufacturing, and some corporate systems have been experiencing interruptions. We engaged third-party cybersecurity experts, informed law enforcement, and have been working around the clock to address the incident.”
“As part of our ongoing investigation, we are also assessing the full scope of any data that may have been affected. We do not store credit card, financial account information, or the Social Security numbers of our Shutterfly.com, Snapfish, Lifetouch, TinyPrints, BorrowLenses, or Spoonflower customers, and so none of that information was impacted in this incident. However, understanding the nature of the data that may have been affected is a key priority and that investigation is ongoing. We will continue to provide updates as appropriate.” – Shutterfly.
The Conti gang is said to be operated by Russian hackers known for executing malware infections like TrickBot, BazarLoader, and Ryuk.
Sign up for our newsletter to get the latest security news from various tech industries and cyber security firms.