Cookware giant Meyer Corporation discloses cyberattack

Pierluigi Paganini February 22, 2022

US cookware distributor giant Meyer Corporation discloses a data breach that affected thousands of its employees.

Meyer Corporation, the second-largest cookware distributor globally, has disclosed a data breach that affects thousands of its employees.

The attack took place on October 25, 2021, as reported by the data breach notification letter shared with the U.S. Attorney General offices of Maine and California.

“On or around October 25, 2021, Meyer was the victim of a cybersecurity attack by an unauthorized third party that impacted our systems and operations. Upon detecting the attack, Meyer initiated an investigation with the assistance of our cybersecurity experts, including third-party forensic professionals. On or around December 1, 2021, our investigation identified potential unauthorized access to employee information.” reported the data breach notification letter. “While we do not currently have evidence that your specific information has been actually accessed or impacted, we want to inform you of this incident so that you may consider taking additional steps to help protect your information.”

The company launched an investigation into the incident that was concluded on December 1, 2021. Experts involved in the investigation discovered that intruders gained access to personal information belonging to employees of Meyer and its subsidiaries.

The company did not provide details about the attack, but the Conti ransomware gang claimed responsibility for the attack and included the firm in the list of its victims on the leak site since November 2021.

Compromised data includes:

  • Full names
  • Physical address
  • Date of birth
  • Gender
  • Ethnicity
  • Social Security number
  • Health insurance information
  • Medical condition
  • Random drug screening results
  • COVID vaccination cards
  • Driver’s license
  • Passports
  • Government ID number
  • Permanent resident cards
  • Immigration status information
  • Information on dependents

The company is offering two years of identity protection services to affected employees and their dependents.

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, ransomware)

[adrotate banner=”5″]

[adrotate banner=”13″]

you might also like

leave a comment