Recruitment giant Randstad hit by ransomware, sensitive data stolen

Graham Cluley
Graham Cluley
@[email protected]

Recruitment giant Randstad hit by ransomware, sensitive data stolen

One of the world’s leading recruitment agencies has found itself the victim of ransomware.

In a statement published on Thursday last week, Randstad said that it had “recently become aware of malicious activity” on its network.

That “malicious activity” was the Egregor ransomware, and although Randstad says that its operations have not been compromised by the security breach it does acknowledge that the hacker accessed – and have subsequently published – sensitive data:

“To date, our investigation has revealed that the Egregor group obtained unauthorized and unlawful access to our global IT environment and to certain data, in particular related to our operations in the US, Poland, Italy and France. They have now published what is claimed to be a subset of that data.”

Randstad employs more than 38,000 employees in 38 countries, and boasts of having helped more than two million candidates to find jobs in 2019, working with 280,000 corporate clients.

The firm says that it is “dedicating significant resources to deal with this regrettable incident,” although it doesn’t share whether it plans to pay any ransom demanded by the cybercriminals behind the attack to prevent more data from being publicly leaked.

Sign up to our free newsletter.
Security news, advice, and tips.

There has been a surge in reports of the Egregor ransomware infecting organisations following the retirement of the notorious Maze ransomware gang earlier this year.

Other recent victims of the Egregor ransomware include the Metro Vancouver transit system, video game maker Ubisoft, and South American retail giant Cencosud.

Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.