Shutterfly, the company, known for its photography and personalized goods/gifts, has been the latest victim of Conti. As a result of the attacks, thousands of the devices in the company have been encrypted. Conti also stole some corporate data with the attack, threatening the company to share them publicly.
Conti demands millions of dollars
The attack happened about 2 weeks ago, causing 4,000 devices to become encrypted as well as 120 VMware ESXi servers. While there are no official sources to confirm, there are rumors about Conti asking for millions for decryption while trying to negotiate with Shutterfly.
The ransomware team has also made a secret webpage that shows the data they stole from the devices. At the top, there is a countdown, saying “Data will be published after…”. It is said that the page contains legal agreements, bank and merchant account info, spreadsheets, login credentials for corporate services, as well as customer data, including four digits of credit cards.
A company statement tells that Shutterfly.com, Spoonflower, Snapfish, and TinyPrints are not affected. The attacks only affected Lifetouch, BorrowLenses, and Groovebook, as well as their corporate network.