MadLiberator Ransomware Attack Disrupts Crosswear Trading Ltd Operations

Incident Date: Jul 17, 2024

Attack Overview

VICTIM

Crossweare Trading LTD

INDUSTRY

Retail

LOCATION

United Kingdom

ATTACKER

Mad Liberator

FIRST REPORTED

July 17, 2024

Request Removal

Ransomware Attack on Crosswear Trading Ltd by MadLiberator

Overview of Crosswear Trading Ltd

Crosswear Trading Ltd, a UK-based wholesale supplier of party supplies, greetings cards, and balloons, has been a trusted name in the retail sector since 1972. Originally trading as Cross Cash and Carry, the company rebranded to Crosswear Trading Ltd in 1974. They offer a wide range of products, including themed partyware, pocket money toys, and disposable catering items, catering to gift shops, partyware stores, and event planners. Known for their competitive trade prices and reliable delivery services, Crosswear Trading Ltd has established a solid reputation in the industry.

Details of the Ransomware Attack

On July 17, 2024, Crosswear Trading Ltd fell victim to a ransomware attack orchestrated by the notorious MadLiberator group. The extent of the data breach remains unknown, but the attack has raised significant concerns about the security of sensitive information and potential operational disruptions. Investigations are ongoing to assess the full impact and implement measures to prevent future incidents.

About MadLiberator Ransomware Group

MadLiberator is a well-known ransomware group recognized for its targeted attacks on various organizations worldwide. They employ sophisticated encryption methods, specifically AES/RSA, to lock victim files and use aggressive extortion tactics. The group has recently gained attention for high-profile operations, including an attack on the Italian Ministry of Culture. MadLiberator distinguishes itself by threatening legal repercussions under regulations like GDPR and CCPA and intimidating victims with the potential misuse of stolen data for fraudulent purposes.

Potential Vulnerabilities and Penetration Methods

While the exact method of penetration in the Crosswear Trading Ltd attack is not yet confirmed, ransomware groups like MadLiberator often exploit vulnerabilities such as outdated software, weak passwords, and lack of multi-factor authentication. Companies in the retail sector, like Crosswear Trading Ltd, which handle large volumes of sensitive customer data, are particularly attractive targets for ransomware attacks. Ensuring robust cybersecurity measures is crucial to mitigate such risks.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.