- The Conti ransomware gang claims to have compromised ‘Mission Imprintables.’
- The actors are allegedly holding sensitive details on the platform’s clients, orders, and employees.
- The ‘Mission Imprintables’ website is visited by thousands each day, many of whom are clients of the platform.
The Conti ransomware group claims to have breached the network of ‘Mission Imprintables’, a San Diego-based apparel, headwear, accessories, and sportswear provider that has been around for 20 years. The actors say they hold the clients' data, including physical addresses, phone numbers, and email addresses.
In the total of 72 GB that has been allegedly stolen, there are also credit card authorization forms containing confidential information, various financial documents relevant to reports, accounting, payroll, tax, and every SQL database stored in the compromised systems.
Employees of the ‘Mission Imprintables’ haven’t been spared either, as Conti lists personal data like their home addresses, phone numbers, Social Security Numbers (SSNs), dates of birth, and their employment contracts. Also, the crooks claim to have data relevant to the sales made, when they were made, where packages were delivered, etc.
The brands listed on the Mission Imprintables website include Puma, Reebok, Fruit of the Loom, Gildan, Adams, and Champion, and various other “made in the USA” products. Also, the website is at the top 35k in America according to the Alexa traffic rank, so it is visited by a respectable number of people, many of which end up registering as clients.
If the above is truthful, which we have not confirmed yet, clients of ‘Mission Imprintables’ are running the risk of getting scammed, phished, have their email addresses looked up in other breaches to possibly find a valid password, receive smishing messages, get social-engineered via phone calls, or even get tricked by post mail. As for the company's employees, they run an even greater risk - which also includes impersonation, bank fraud, and high-level phishing.
We have sent a message to ‘Mission Imprintables,’ and we will update this post as soon as we hear back. For now, the website appears to be facing no issues, and there are no notices about any problems with order processing or any other service. Finally, we have checked the new member registration platform, and it seems to be working fine.
Conti is one of the less active but pretty much alive ransomware operations, having an average of two victims per week. Mostly, they are targeting medium-sized businesses that are easier to breach and extort for lesser amounts.