FlagThis

The Play ransomware group has claimed responsibility for a cyberattack on Krispy Kreme, impacting the company's online ordering systems. The initial unauthorized activity was detected on November 29th, 2024. Krispy Kreme has reported this incident to the U.S. Securities and Exchange Commission (SEC) on December 10th, and has taken steps to contain and remediate the breach. The company has engaged external cybersecurity experts to investigate the full scope of the attack.

The Play group has threatened to leak sensitive data if their demands are not met and have posted the claim on their leak site. The ransomware gang is known for targeting companies and governmental institutions worldwide and is believed to have links to Russian cybercriminal organizations. The attack disrupted online ordering, but physical stores and daily deliveries to retail partners remain unaffected. Law enforcement agencies are investigating this security incident.

ImgSrc: mnwa9ap4czgf-u1335.pressidiumcdn.com

References:

• CyberInsider - Play Ransomware Claims Responsibility for Attack on Krispy Kreme - 6d
• @cybernews - Krispy Kreme is claimed by the Play ransomware group on Thursday, and now the gang is threatening to leak sensitive data. - 5d
• @infosecnews.bsky.social - The Play ransomware gang claims responsibility for a cyberattack on Krispy Kreme 🍩💻, disrupting online orders & allegedly stealing sensitive data. - 5d
• Over Security - Bleeping Computer article on Krispy Kreme breach. - 5d
• @BleepingComputer - The Play ransomware gang has claimed responsibility for a cyberattack that impacted the business operations of the U.S. doughnut chain Krispy Kreme in November. - 5d
• Hackread - Play Ransomware Claims Krispy Kreme Breach, Threatens Data Leak within 2 Days - 4d

Classification:

• HashTags: Ransomware Cyberattack DataBreach
• Company: Krispy Kreme
• Target: Krispy Kreme
• Attacker: Play
• Product: online ordering
• Feature: online ordering system
• Type: Ransomware
• Severity: Major