A marketing firm RR Donnelly has confirmed that hackers stole data in a suspected Conti ransomware cyberattack in December.
Donnelly is a leading provider of integrated marketing, communications, and printing services. The company had approximately 33,000 employees in 2017 and earned $4.93 billion in 2021.
According to a Form 8-K filed with the US Securities and Exchange Commission, the company suffered a security incident they called a “systems intrusion in its technical environment” that led to the temporary closure of its network.
The incident affected customers who rely on the company’s printing services. Some of them were unable to receive their printed documents, such as disbursement checks and motor vehicle documentation.
After initially stating that they were not aware of any data breach, the hackers of the group known as Conti claimed responsibility on January 15 and leaked 2.5 GB of data allegedly stolen from RRD.
According to a source, the hackers took the data off public view after they started negotiations with the company.
In a follow-up 8-K filing, the company confirmed that the data had been stolen during the attack and likely included customer information.
“At this time, however, the Company has become aware that certain of its corporate data was accessed and exfiltrated, the nature of which is being actively examined. Based on information known to date, the Company believes the access and exfiltration was in connection with the previously disclosed systems intrusion and not a new incident,” reads the new SEC filing.
As a result of the attack, the company has launched special measures to safeguard the integrity of its customers’ data.
“The Company is keeping clients informed of any relevant updates on an ongoing basis and plans to take all appropriate measures to safeguard the integrity of the Company’s data and clients’ information.”
In November 2021, the FBI warned that financial firms may be targeted by hackers at times of significant financial events. The recent ransomware attack came just after RR Donnelly announced the definitive merger agreement with Chatham Asset Management.
