Puma suffered a data breach following the Kronos ransomware attacks

The world becoming more digitized than ever before has resulted in a surge in malware attacks on various organizations. In a recent ransomware attack, Puma, a renowned German multinational firm that designs and manufactures athletic and leisure footwear, clothes, and accessories, experienced a data breach. The company suffered a data breach following the ransomware attack that affected Kronos in December 2021.

According to a data breach notification filed on February 3 by the Ultimate Kronos Group (UKG), Puma employees’ and their dependent’s personal information was stolen by threat actors who exploited vulnerabilities in the Kronos Private Cloud (KPC). Puma submitted a data breach notification to multiple attorney general offices.

On January 7, 2022, Kronos discovered this and notified Puma on January 10 but did not provide the overall number of employees affected. 

Ransomware is a threat to the entire corporation that is more than simply an information technology security concern. Hence, it is sensible to presume that the company is pursuing a speedy mitigation strategy in response to the attack. Meanwhile, Experian’s “IdentityWorks membership,” which includes credit monitoring, identity restoration, and identity theft insurance, was offered to the impacted individuals for free.