Cybercrime

This week, American toy development giant Mattel announced that it was the target of a ransomware attack that disrupted some of its operations.

Created in 1945 and based in El Segundo, California, Mattel is one of the largest retailers of toys in terms of sales, with its activities split into three divisions, including North America, International, and American Girl.

In 150 countries, Mattel markets items such as Barbie, Fisher-Price, Monster Big, American Girl, Polly Purse, and Hot Wheels, and has a presence in 40 nations.

The toy manufacturer disclosed this week in a 10-Q form lodged with the Securities and Exchange Commission (SEC) that it fell victim to a ransomware attack earlier this year.

“Mattel learned on July 28, 2020 that it was the target of a ransomware attack on its information management infrastructure that triggered encryption of data on a variety of systems,” the firm said in the SEC filing.

Mattel also noted that it triggered response procedures shortly after discovering the incident and took action to contain the attack and repair the damaged systems.

“Mattel contained the attack and Mattel resumed its activities, while certain business processes were briefly affected,” the firm said.

The corporation concluded, after an investigation into the incident, that no confidential business data was exfiltrated. In addition , the business claims that no store customer, customer, provider, or employee details was compromised either.

“As a result of the incident, there has been no significant effect on Mattel ‘s activities or financial position,” the firm said.

Mattel did not offer specifics about the ransomware families involved in the attack, however, after a TrickBot intrusion, the Ryuk operators may have been involved.