Updated February 9th, 2022 at 07:15 IST

Puma data breach affects nearly half of firm's workforce after Kronos ransomware attack

Sportswear manufacturer Puma has suffered a data breach after the Kronos ransomware attack. The attackers stole the personal information of its employees.

Reported by: Apoorva Kaul
Image: Shutterstock/Representative | Image:self
Advertisement

Sportswear manufacturer Puma has reportedly suffered a data breach after the Kronos ransomware attack. The attackers stole the personal information of Puma employees and their dependents from the Kronos Private Cloud (KPC), Bleeping Computer reported. The data breach notification of Puma has been filed with several attorney general offices in February.

Following the attack, a Kronos customer affected in the incident told Bleeping Computer that they had to make use of paper and pencil to cut checks and monitor timekeeping. The letters have been sent to the victims of the data theft on February 3. In the letter, it is explained that Kronos was performing a comprehensive review of the affected environment to find whether personal information of several Puma employees was among the data that had been unauthorizedly accessed.  Kronos on 7 January 2022 confirmed that some of the personal information was among the stolen data and Puma had been informed about the incident on 10 January 2022, as per the Bleeping Computer report.

No customer data affected 

The data breach has not mentioned the number of Puma employees who have been affected by data-stealing during the attack, however, as per the report, almost half of its employees had been affected. The information regarding the stolen data had been provided to the Office of the Main Attorney General. According to the data shared with the Office of the Maine Attorney General, the ransomware attack led to the data theft of 6,632 people. The company has revealed that the documents stolen during the Kronos ransomware attack include Social Security Numbers in filings with the same office, as per the news report. The people affected by the data breach have been given two years of free Experian IdentityWorks membership, which includes credit monitoring, identify restoration and identity theft insurance. Kerstin Neuber, Puma's Senior Head of Communications has informed that no Puma customer data was affected in the data breach. 

Image: Shutterstock/Representative

Advertisement

Published February 9th, 2022 at 07:15 IST