Recruitment giant Randstad hit by ransomware, sensitive data stolen

Graham Cluley
@gcluley

Recruitment giant Randstad hit by ransomware, sensitive data stolen

One of the world’s leading recruitment agencies has found itself the victim of ransomware.

In a statement published on Thursday last week, Randstad said that it had “recently become aware of malicious activity” on its network.

That “malicious activity” was the Egregor ransomware, and although Randstad says that its operations have not been compromised by the security breach it does acknowledge that the hacker accessed – and have subsequently published – sensitive data:

“To date, our investigation has revealed that the Egregor group obtained unauthorized and unlawful access to our global IT environment and to certain data, in particular related to our operations in the US, Poland, Italy and France. They have now published what is claimed to be a subset of that data.”

Randstad employs more than 38,000 employees in 38 countries, and boasts of having helped more than two million candidates to find jobs in 2019, working with 280,000 corporate clients.

The firm says that it is “dedicating significant resources to deal with this regrettable incident,” although it doesn’t share whether it plans to pay any ransom demanded by the cybercriminals behind the attack to prevent more data from being publicly leaked.

Sign up to our newsletter
Security news, advice, and tips.

There has been a surge in reports of the Egregor ransomware infecting organisations following the retirement of the notorious Maze ransomware gang earlier this year.

Other recent victims of the Egregor ransomware include the Metro Vancouver transit system, video game maker Ubisoft, and South American retail giant Cencosud.

Found this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post.


Graham Cluley is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent security analyst, he regularly makes media appearances and is an international public speaker on the topic of computer security, hackers, and online privacy. Follow him on Twitter at @gcluley, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.