RRD Suffers Data Theft in a Conti Ransomware Attack

R.R. Donnelley is a Fortune 500 integrated communications corporation based in the United States that offers marketing and business communications, commercial printing, and other associated services. The company’s corporate offices are in Chicago, Illinois, in the United States. R.R. Donnelley was the world’s largest commercial printer in 2007.

What Happened?

Threat actors seized data in a December intrusion, verified by BleepingComputer to be a Conti ransomware campaign, according to RR Donnelly.

RRD submitted a Form 8-K with the SEC on December 27th, stating that they had experienced a “systems intrusion in its technological environment,” which resulted in the shutdown of their network to prevent the assault from spreading.

An SEC filing is a financial statement or other official document presented to the Securities and Exchange Commission of the United States.

Customers experienced difficulties as a result of the shutdown of IT services, with some unable to get printed papers necessary for vendor payments, disbursement checks, and motor vehicle documentation.

While RRD initially said that they were unaware of any customer data obtained during the assault, the Conti ransomware group took credit and began releasing 2.5GB of data purportedly acquired from RRD on January 15th.

RRD recently filed a supplemental 8-K

Read More: https://heimdalsecurity.com/blog/rrd-suffered-a-data-theft-in-a-conti-ransomware-attack/