Snap-on

Snap-on, American automotive tools manufacturer, suffered a data breach incident after the Conti ransomware gang began leaking the company's data in March.

The company detected suspicious activity in their network and upon investigation realised that the threat actors stole personal data belonging to employees.

The compromised information included names, Social Security Numbers, dates of birth, and employee identification numbers.

They immediately took down our network connections as part of our defense protocols and offered a free one-year subscription to the IDX identity theft protection service for those affected.

Source: https://www.bleepingcomputer.com/news/security/snap-on-discloses-data-breach-claimed-by-conti-ransomware-gang/

TPRM report: https://www.rankiteo.com/company/snap-on

"id": "sna1324522",
"linkid": "snap-on",
"type": "Ransomware",
"date": "6/2017",
"severity": "80",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"

{'affected_entities': [{'industry': 'Automotive Tools Manufacturing',
                        'location': 'United States',
                        'name': 'Snap-on',
                        'type': 'Company'}],
 'data_breach': {'data_exfiltration': 'Yes',
                 'personally_identifiable_information': ['names',
                                                         'Social Security '
                                                         'Numbers',
                                                         'dates of birth',
                                                         'employee '
                                                         'identification '
                                                         'numbers'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personal Data']},
 'date_detected': 'March',
 'description': 'Snap-on, American automotive tools manufacturer, suffered a '
                'data breach incident after the Conti ransomware gang began '
                "leaking the company's data in March. The company detected "
                'suspicious activity in their network and upon investigation '
                'realised that the threat actors stole personal data belonging '
                'to employees. The compromised information included names, '
                'Social Security Numbers, dates of birth, and employee '
                'identification numbers. They immediately took down our '
                'network connections as part of our defense protocols and '
                'offered a free one-year subscription to the IDX identity '
                'theft protection service for those affected.',
 'impact': {'data_compromised': ['names',
                                 'Social Security Numbers',
                                 'dates of birth',
                                 'employee identification numbers'],
            'identity_theft_risk': 'High'},
 'motivation': 'Data Theft, Financial Gain',
 'ransomware': {'data_exfiltration': 'Yes', 'ransomware_strain': 'Conti'},
 'response': {'containment_measures': ['Took down network connections'],
              'recovery_measures': ['Offered free one-year subscription to IDX '
                                    'identity theft protection service']},
 'threat_actor': 'Conti Ransomware Gang',
 'title': 'Snap-on Data Breach Incident',
 'type': 'Data Breach, Ransomware'}

Snap-on

Kettering Health: US Healthcare Data Breach Crisis Impacts Millions -- Security Today

Gelatissimo: Aussie ice-cream franchise Gelatissimo suffers alleged hack by DragonForce

Airbus Atlantic and STELIA Aerospace North America Inc.: STELIA Aerospace confirms cyber attack on North American systems. $2.07 million ransom issued