Sam's Club, a subsidiary of Walmart, is investigating a potential security incident following claims of a breach by the Clop ransomware gang. Clop has added Sam's Club to its leak site but has not yet released proof. The breach may involve the exploitation of a zero-day vulnerability in Cleo file transfer software, which Sam's Club may have used. Prior incidents include credential stuffing in 2020, but the current situation remains under investigation with no explicit customer or employee data known to be compromised.
TPRM report: https://scoringcyber.rankiteo.com/company/sam's-club
"id": "sam248032825",
"linkid": "sam's-club",
"type": "Ransomware",
"date": "3/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'Retail',
'name': "Sam's Club",
'type': 'Retail'}],
'attack_vector': ['Zero-day vulnerability exploitation'],
'description': "Sam's Club, a subsidiary of Walmart, is investigating a "
'potential security incident following claims of a breach by '
"the Clop ransomware gang. Clop has added Sam's Club to its "
'leak site but has not yet released proof. The breach may '
'involve the exploitation of a zero-day vulnerability in Cleo '
"file transfer software, which Sam's Club may have used. Prior "
'incidents include credential stuffing in 2020, but the '
'current situation remains under investigation with no '
'explicit customer or employee data known to be compromised.',
'investigation_status': 'Under investigation',
'ransomware': {'ransomware_strain': 'Clop'},
'threat_actor': 'Clop ransomware gang',
'title': "Potential Security Incident at Sam's Club",
'type': 'Ransomware',
'vulnerability_exploited': 'Cleo file transfer software'}