Sam's Club Investigates Alleged Cl0p Ransomware Breach
Sam's Club, the membership warehouse club chain owned by Walmart, has announced that it is investigating claims of a potential ransomware breach. The alleged breach is linked to the Cl0p ransomware group, which has been accused of ignoring security measures and exploiting zero-day vulnerabilities in various software products.
The Cl0p ransomware gang has listed Sam's Club among its victims, claiming that the company ignored security warnings. However, a spokesperson for Sam's Club stated that they have seen no evidence of a breach and are taking the allegations seriously. "Protecting the privacy and security of our members' information is a top priority at Sam's Club," said the spokesperson.
The Cl0p ransomware group has been linked to several high-profile breaches in recent months, including attacks on Rackspace Technology, Petmate, and Simple Human. The gang claimed to have breached over 170 companies using zero-day vulnerabilities in Cleo's file-transfer software. Some of these companies, however, have disputed the gang's claims and denied being compromised.
In December 2024, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the vulnerability CVE-2024-50623 to its Known Exploited Vulnerabilities (KEV) catalog. This vulnerability affects multiple Cleo products, including LexiCom, Harmony, and VLTrader. The agency advises customers to immediately upgrade instances of these products to the latest released patch (version 5.8.0.21) to address additional potential attack vectors.
Security firm Huntress has also been investigating the Cl0p ransomware group's activities. According to their findings, the gang has been exploiting Cleo file transfer software using zero-day vulnerabilities. Huntress researchers created a proof of concept and warned that fully patched systems running 5.8.0.21 are still exploitable.
The Cl0p ransomware group has announced that it will publish stolen data from Sam's Club on January 18, 2025, unless the company agrees to pay a ransom. Some organizations listed by the gang have disputed its claims and denied being compromised. As the investigation into the alleged breach continues, Sam's Club is urging customers to be vigilant about their online security.
What You Need to Know
- The Cl0p ransomware group has listed Sam's Club among its victims, claiming that the company ignored security warnings.
- A spokesperson for Sam's Club stated that they have seen no evidence of a breach and are taking the allegations seriously.
- The vulnerability CVE-2024-50623 affects multiple Cleo products, including LexiCom, Harmony, and VLTrader.
- Security firm Huntress has been investigating the Cl0p ransomware group's activities and warned that fully patched systems are still exploitable.
Protecting Yourself from Ransomware
Ransomware attacks can have devastating consequences for individuals and organizations. To protect yourself, it is essential to stay informed about the latest security threats and take steps to strengthen your online defenses.
- Keep your software up-to-date: Regularly update your operating system, browser, and other software to ensure you have the latest security patches.
- Use strong passwords: Use unique and complex passwords for all accounts, and avoid using the same password across multiple sites.
- Back up your data: Regularly back up your important files and data to a secure location, such as an external hard drive or cloud storage service.
- Be cautious of phishing emails: Be wary of suspicious emails that ask you to download attachments or click on links. Legitimate organizations will never ask you to do this.
Stay Informed with Security Updates
Follow us on Twitter, Facebook, and Mastodon for the latest security updates and news. Stay informed about the latest threats and take steps to protect yourself and your organization from ransomware attacks.