Fourlis Group, the operator of IKEA shops in Greece, Cyprus, Romania, and Bulgaria, has knowledgeable that the ransomware assault it suffered simply earlier than Black Friday on November 27, 2024, brought on losses estimated to €20 million ($22.8 million).
The safety incident grew to become public on December 3, 2024, when the group admitted that the technical issues IKEA on-line outlets had been going through had been because of “malicious exterior motion.”
Though the corporate additionally operates Intersport, Foot Locker, and Holland & Barrett outlets within the stated nations, the affect of the assault affected primarily IKEA enterprise operations.
“The incident brought on non permanent disruptions in a retailer replenishment, primarily impacting the Residence Furnishings phase (IKEA shops) and e-commerce operations throughout December 2024 via February 2025,” reads a press launch printed earlier this week.
In an announcement to native media, the Fourlis Group CEO, Dimitris Valachis, clarified that the affect the safety incident had on IKEA gross sales operations is estimated to €15 million till December 2024, and one other €5 million into 2025.
Valachis additionally famous that the group did not pay the ransomware actors, and restored the affected programs with the assistance of exterior cybersecurity specialists.
Additionally, the corporate acknowledged that it efficiently thwarted a number of subsequent assaults that adopted the primary breach.
The investigation that adopted revealed no proof of knowledge theft or leaks linked to the incident, though information safety authorities within the 4 nations had been notified as required by regulation.
“The non permanent unavailability of some information affected by the incident was restored nearly instantly, whereas the technical report (forensic) didn’t show the leakage of private information.” reads the press launch.
Though a number of months have handed for the reason that assault, no ransomware group has claimed it but, presumably as a result of they didn’t handle to exfiltrate any information or as a result of they nonetheless preserve hope for a non-public decision with the sufferer.
Based mostly on an evaluation of 14M malicious actions, uncover the highest 10 MITRE ATT&CK methods behind 93% of assaults and the best way to defend in opposition to them.
