Intersport hacked: employee data was stolen

The new victim of a cyberattack is Intersport, with the brand that experienced a hack. Employee-specific documents were stolen and distributed on the Internet. The hacker group Hive claims responsibility for this attack.

The data includes the payslips of employees of an Intersport store in the north of France. Photocopies of employee passports have also been released, as have workplace accident reports and what appears to be lists of employees or former employees of several stores, sometimes including sensitive data such as social security number . Hive presents these documents as proof of the success of its attack, suggesting that the hackers were able to recover other data.

The world contacted Intersport for a reaction following this hack, but the group declined to comment, other than to indicate that the analysis of the attack continues.

On November 24, Intersport had already experienced disruption following a cyberattack. A few of its stores, mainly in the north, could no longer communicate with the servers, which prevented access to the checkouts, the loyalty card service and the gift card service.

Regarding Hive, their method of operation is classic, namely ransomware. Hackers infiltrate the network of their victims, recover data, take control of machines/servers and then lock access to files. They then demand a ransom from the hacked company to provide them with the key to unlock access.

According to US authorities, the Hive group, which has been in operation for almost two years, has targeted more than 1,300 entities worldwide and collected around $100 million in ransom.