Imperial Dade

Imperial Dade, a leading distributor of foodservice packaging, facilities maintenance supplies, and equipment, suffered a ransomware attack on July 19, 2023. The breach exposed sensitive personal data, including Social Security numbers (SSNs), potentially affecting 401 individuals. The incident was formally reported to the Maine Office of the Attorney General on September 1, 2023, nearly six weeks after the attack occurred. As a remedial measure, Imperial Dade offered 24 months of identity theft protection services through Experian to the impacted individuals. The delay in disclosure and the nature of the compromised data particularly SSNs heighten risks of identity theft, financial fraud, and long-term reputational damage. While the exact ransom demands or operational disruptions were not detailed, the attack underscores vulnerabilities in the company’s cybersecurity defenses, particularly against data-exfiltrating ransomware strains that target personally identifiable information (PII).

Source: https://www.maine.gov/agviewer/content/ag/985235c7-cb95-4be2-8792-a1252b4f8318/37747452-ca2e-4702-b175-cc12d778942a.shtml

TPRM report: https://www.rankiteo.com/company/philip-rosenau-company-inc.

"id": "phi1023090725",
"linkid": "philip-rosenau-company-inc.",
"type": "Ransomware",
"date": "7/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"

{'affected_entities': [{'customers_affected': 401,
                        'name': 'Imperial Dade',
                        'type': 'company'}],
 'customer_advisories': ['24 months of identity theft protection via Experian'],
 'data_breach': {'number_of_records_exposed': 401,
                 'personally_identifiable_information': ['Social Security '
                                                         'numbers'],
                 'sensitivity_of_data': 'high (SSNs)',
                 'type_of_data_compromised': ['personally identifiable '
                                              'information (PII)']},
 'date_detected': '2023-07-19',
 'date_publicly_disclosed': '2023-09-01',
 'description': 'The Maine Office of the Attorney General reported that '
                'Imperial Dade experienced a ransomware attack on July 19, '
                '2023, potentially affecting 401 individuals and involving '
                'access to Social Security numbers. Identity theft protection '
                'services (24 months via Experian) were offered to affected '
                'individuals.',
 'impact': {'data_compromised': ['Social Security numbers'],
            'identity_theft_risk': 'high (SSNs exposed)'},
 'references': [{'source': 'Maine Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': ['Maine Office of the '
                                                        'Attorney General']},
 'response': {'third_party_assistance': ['Experian (identity theft '
                                         'protection)']},
 'title': 'Imperial Dade Ransomware Attack (July 2023)',
 'type': 'ransomware'}

Imperial Dade

Asahi, City of Sugar Land and Government of Palau: Researchers warn of Qilin ransomware gang after group hit hundreds of orgs this year

Rumpke: Rumpke settles lawsuit over employee data stolen in cyberattack

deVixor: New Android Banking Malware ‘DeVixor’ Adds Ransomware Capabilities