💰💣

Garmin Security Incident

23/07/2020 1887 days ago Resolved

Incident Overview

Situation Description

Garmin experienced a ransomware attack in July 2020, which rendered some of its systems useless and affected its website, customer support, and user applications.

Event Types

Ransomware Malware / Destructive Attack

Industry Sector

Technology

Geographic Scope

Global

Response Actions

Paid a Ransom Managed Public Narrative & Crisis Communications Conducted Employee Training Implemented Advanced Authentication

Impact Analysis

Event Types (2 identified)

Ransomware Malware / Destructive Attack

Financial Impact

$10,000,000 USD

Records Affected

Data Types Compromised

PII (Personally Identifiable Information)

Primary Impacts

Operational Disruption Financial Loss

Key Decisions Made

Garmin is believed to have paid a $10 million ransom to ransomware hackers.; Garmin may have used a third-party cybersecurity firm to act as an intermediary for the ransom payment to comply with U.S. sanctions against the hacking group Evil Corp.; Organizations must invest in strong cybersecurity policies and best practices, such as phishing awareness training and implementing a zero-trust strategy.

Technical Analysis

Attack Method

Unknown

Threat Actor Attribution

Evil Corp

Vulnerability / Tool

WastedLocker

Additional Information

Attacks Cloud Data Executive Decisions IoT Malware Mobile Network Security Strategy Threat Defense Filter Categories Attacks Cloud Data Executive Decisions IoT Malware Mobile Network Security Strategy Threat Defense Incident Of The Week: Garmin Pays $10 Million To Ransomware Hackers Who Rendered Systems Useless It is believed that Garmin paid the $10 million ransom. Add bookmark Seth Adler 08/14/2020 [Records Exposed: N/A | Industry: Technology | Type Of Attack: Ransomware] On July 23, Garmin users went to Twitter to express their concern over inaccessible website features. Four days later, Garmin released an official statement confirming that a cyber attack had taken place. Garmin assured its users that no PII (personal identifying information) was compromised. In this article, you will learn about: The facts of the attack. What were the lessons learned after the attack? Some quick tips to prevent ransomware. The Facts: Garmin is most commonly known for its fitness tracking capabilities in the form of GPS wearables, but the corporation also operates in the aviation space. Consequently, some planes whose aviation infrastructure relies on Garmin technology were also affected by the hack. Hackers deployed the ransomware tool WastedLocker , which encrypts key data on a companys digital infrastructure. In the case of Garmin, website functions, customer support, and user applications were all affected. Unlike typical ransomware software, WastedLocker does not steal identifying information and hold it for ransom. Instead, it renders programs useless until decrypted. The hacking organization then demands a fee for the decryption key. In the case of Garmin, although not verified by the U.S. corporation, it is believed that Garmin paid the $10 mn ransom . In the world of cyber crime, however, nothing is cut and dry. Cyber security experts have linked this young ransomware tool with the Russian hacking group known as Evil Corp . If this is the case, assuming the...

... (truncated for display)

Quick Facts

Company:: Garmin
Date:: 23/07/2020
Status:: Resolved
Decision Maker:: nan
Position:: nan
Published:: 14/08/2020

Source Information

Original Query

how did "Garmin" recover from "WastedLocker" ransomware attack

View Original Source

Timeline

Information Published

14/08/2020

Incident Occurred

23/07/2020 (1887 days ago)

Status: Resolved

Estimated resolution based on age

Actions

View Company Profile

Navigation

Quick Stats