Action sports giant Boardriders was hit by a ransomware attack that affected some of its subsidiaries, including Quiksilver and Billabong, and forced the company to shut down computing systems all over the world.
Boardriders has around 10,000 employees from all over the world and its Quiksilver, Billabong, ROXY, RVCA, DC Shoes, and Element brands are sold in over 110 countries.
Following the attack, the company’s e-commerce stores displayed messages offering customers 20% off promotions and stating that Boardriders is experiencing shipping delays.
Global-scale ransomware attack
Following the incident, Boardriders said in a statement to ShopEatSurf that the attack impacted multiple systems, from several regions around the world.
“Our IT teams have been working to quickly restore our systems to support our operations, which are now largely transacting and shipping normally,” Boardriders also said.
“We are proud of how our teams have responded to this challenge, and we are incredibly grateful for their hard work,” the company added. “We also greatly appreciate our customers’ and vendors’ patience and support during this brief interruption.”
While BoardRiders’ statement does not detail the type of cyberattack they experienced, sources familiar with the matter told BleepingComputer that they were affected by ransomware. We were further told that this attack occurred during the last week of October 2019.
“They have been in a world of pain. Staff haven’t even been able to turn on their computers and have been banned from using them until the whole IT system is cleaned,” an industry source told pressreader. “There have been major delays in getting stock to retailers and online customers.”
BleepingComputer reached out to Boardriders for more details regarding the incident but did not hear back at the time of publication.
Spanish MSP and radio also attacked this week
The start of November has already seen a large scale ransomware attack against Everis, one of Spain’s largest managed service providers (MSP) and an NTT DATA company, which had its computers encrypted on Monday with BitPaymer.
“The network has been disconnected with clients and between offices. We will keep you updated. Please, send urgently the message directly to your teams and colleagues due to standard communication problems,” Everis said in an internal memo at the time.
Spain’s largest radio station Cadena SER (Sociedad Española de Radiodifusión) was also impacted the same day in an attack that used an unknown ransomware strain.
After the attack, the radio station was forced to disconnect all of its computers from the Internet and to continue transmitting using equipment at its Madrid headquarters.