The American manufacturer of automotive tools Snap-on reported a data leak in connection with a cyberattack.
Snap-on is the market leader in tools, software and diagnostic services for the transport sector. In particular, the company owns the brands Mitchell1, Norbar, Blue-Point, Blackhawk and Williams.
This week, the manufacturer reported a data leak. Having discovered suspicious activity in its networks in March of this year, Snap-on was forced to turn off all its systems. The company turned to external information security specialists for help in analyzing the incident and notified law enforcement agencies.
According to the investigation, on March 1-3, 2022, attackers stole personal data (names, social security numbers, dates of birth and identification numbers) of employees. To all employees affected by the leak, Snap-on offers a free annual subscription to the IDX identity theft protection service.
Although the manufacturer did not provide any details about the cyberattack, the sensational cyber extortion group Conti took responsibility for it, which had already begun to publish the files stolen from it on its leaks website. According to the ransomware, they managed to steal 1 GB of data from Snap-on. However, the data remained on the site for a short time and were soon deleted, and the company name no longer appeared in the list of victims. It is possible that the management of Snap-on decided to pay extortionists.