Symrise, a flavour and fragrance developer for Nestle and Coca-Cola has had its sensitive data stolen and encrypted in a Clop ransomware attack.
The Clop malware was injected into the Symrise network through a successful email phishing attack. In such cyber attacks, seemingly innocuous emails are infiltrated with malicious links that initiate malware downloads.
The cyber attack encrypted 1000 device on the Symrise network and exfiltrated 500 GB of unencrypted data from its servers.
Following classical double-extorsion methods, Clop posted evidence of the breached data on its data leak site, exposing, passport images, audit reports and even confidential fragrance ingredients.
If Symrise refuses to pay Clop’s ransom price, the remainder of its breached data will be published on the dark web.
The ransom price for Symrise’s seized data is unknown.
Clop ransomware has also been repeatedly attacking the Australian Health Sector, prompting an official alert by the Australian Cyber Security Centre (ACSC).