One of the largest companies in the toy industry, Mattel revealed that it suffered a ransomware attack in July that affected some of its business operations, but did not result in theft data.
Mattel is the second largest company game maker in the world with 24.000 employees and 5,7 revenue of $2019 billion. Mattel is well known for its popular brands, including of Barbie, Hot Wheels, Fisher-Price, American Girl and Thomas & Friends.
In a Form 10-Q filed with the Securities and Exchange Commission (SEC), Mattel disclosed that it suffered a ransomware attack on July 28, 2020. The Form 10-Q, a quarterly report authorized by the United States Federal Securities and Exchange Commission, which must be submitted by listed companies to it.
According to the report, on July 28, 2020, Mattel discovered that it was the victim of a ransomware attack on its technology systems that caused data on some systems to be encrypted. Immediately after detection of the attack, Mattel began to implement evasion protocols and take a series of measures to end the attack and restore the affected systems. Mattel believes it repulsed the attack and, although some business operations were temporarily affected, Mattel was able to resume its critical operations.
After conducting its investigation, Mattel does not believe that data was stolen during the ransomware attack.
The deposition does not indicate which ransomware was responsible for the attack, but rumors say TrickBot is responsible. TrickBot infections are usually followed by Ryuk or Conti ransomware that encrypts devices that have infiltrated the network.