Me Too Shoes Hit by Play Ransomware, Exposing Sensitive Data

Incident Date: Jun 13, 2024

Attack Overview

VICTIM

Me Too Shoes

INDUSTRY

Retail

LOCATION

USA

ATTACKER

Play

FIRST REPORTED

June 13, 2024

Request Removal

Ransomware Attack on Me Too Shoes by Play Ransomware Group

Company Profile: Me Too Shoes

Me Too Shoes, founded in 1996 and headquartered in New York City, is a prominent player in the comfort fashion footwear market. Specializing in stylish, comfortable, and affordable shoes for women, the brand offers a wide range of footwear including flats, heels, wedges, sandals, and boots. The company emphasizes blending fashion-forward designs with practical comfort, incorporating features like cushioned insoles and flexible outsoles. Despite its small size, with approximately 7-9 employees, Me Too Shoes has a significant global presence and reported an annual revenue of $9 million in 2024.

Attack Overview

Me Too Shoes recently fell victim to a ransomware attack by the Play ransomware group. The attack compromised private and personal confidential data, including client documents, budget, payroll, accounting, contracts, taxes, IDs, and financial information. The breach was announced on Play's dark web leak site, highlighting the severity of the data exposure.

About the Play Ransomware Group

The Play ransomware group, operated by Ransom House, is known for its sophisticated attacks targeting Linux systems. Initially linked to the Babuk code, Play ransomware has evolved to deploy cryptographic lockers, focusing on ESXi lockers. The group is notorious for its unique verbose ransom notes and the use of various hack tools and utilities post-initial access, such as AnyDesk and NetCat.

Penetration and Vulnerabilities

While the exact method of penetration in the Me Too Shoes attack remains unclear, Play ransomware actors typically exploit vulnerabilities in network security. Given Me Too Shoes' small team and potentially limited cybersecurity resources, the company may have been an attractive target for the ransomware group. The attack underscores the importance of robust cybersecurity measures, especially for companies with significant online and retail operations.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.