Ray-Ban Parent Luxottica Hit With Ransomware Attack, Company Says No Data Stolen

The ransomware attack was confirmed Tuesday by the company.

Ray-Ban Parent Luxottica Hit With Ransomware Attack, Company Says No Data Stolen

Luxottica owns brands like Ray-Ban, Sunglass Hut, LensCrafters, EyeMed, and Pearle Vision

  • Luxottica asked its employees to return home after the attack
  • Operations in Italy and China were temporarily halted
  • Cyberattackers reportedly exploited vulnerability in Citrix devices

Luxottica, an Italy-based eyewear conglomerate, has been hit with a ransomware attack that has forced the company to shut its operations in Italy and China for the time being. The company says that no consumer data has been stolen in the cyberattack that took place Sunday evening. Citing “computer system failure”, Luxottica initially sent SMS texts to its employees asking them to go home. It later confirmed that it was a ransomware attack that caused them to shut off their networks “for a few hours.”

Citing Italian media reports, Bleeping Computer says that Luxottica told its employees working in its offices in Agordo and Sedico, Italy, through text messages that the company has suffered “computer system failure”, and asked them to return to their homes. Apparently, the websites for various company-owned brands, including Ray-Ban, Sunglass Hut, LensCrafters, EyeMed, and Pearle Vision were not working since Friday.

Later, Luxottica information security manager Nicola Vanin confirmed through a post on LinkedIn that the company has been hit by a cyberattack that impacted its operations. In his latest post about the cyberattack, Vanin says that there has been no theft of information, and the procedure for cleaning up the affected servers has already begun. After turning everything off for a few hours, work activities are gradually returning to normal in the company.

Citing cybersecurity intelligence firm Bad Packets, Bleeping Computer reports that the attackers possibly gained access using a vulnerability through “a Citrix ADX controller device vulnerable to the critical CVE-2019-19781 flaw in Citrix devices.” The vulnerability is reportedly popular among ransomware threat actors, and gives access to a network as well as credentials.

Luxottica is reportedly the world's largest eyewear company that employs around 80,000 people. The company generated a revenue of EUR 9.4 billion in 2019. It owns brands like Ray-Ban, Oakley, Oliver Peoples, Ferrari, Michael Kors, Bulgari, Armani, Prada, Chanel, and Coach.

How are we staying sane during this Coronavirus lockdown? We discussed this on Orbital, our weekly technology podcast, which you can subscribe to via Apple Podcasts or RSS, download the episode, or just hit the play button below.


For the latest tech news and reviews, follow Gadgets 360 on Twitter, Facebook, and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel.

Further reading: Ransomware, Luxottica, Ray-Ban
Sourabh Kulesh
Sourabh Kulesh is a Chief Sub Editor at Gadgets 360. He has worked in a national daily newspaper, a news agency, a magazine and now writing technology news online. He has knowledge on a wide gamut of topics related to cybersecurity, enterprise and consumer technology. Write to sourabhk@ndtv.com or get in touch on Twitter through his handle @KuleshSourabh. More
Sony Shares Slide as Microsoft Buys Bethesda-Owner ZeniMax to Boost Games Lineup
Share on Facebook Tweet Snapchat Share Reddit Comment



© Copyright Red Pixels Ventures Limited 2022. All rights reserved.