Netfilim Ransomware Operators Breached MAS Holdings- South Asia’s Largest Manufacturer of Lingerie

The relatively new ransomware group operators have struck their second big target after Brazilian Conglomerate COSANMAS Holdings.

MAS Holdings is South Asia’s largest manufacturer of lingerie. MAS Holdings began as an intimate apparel manufacturer and later diversified into sportswear, performance wear and swimwear.

MAS Holdings has 53 manufacturing facilities in 17 countries employing over 93,000 people globally. The company has design and development hubs in New York, London, Hong Kong and Colombo. Its customers include Victoria’s Secret, Nike, Lululemon and PVH.

The company manufactures apparel accessories and fabric and also provides services beyond apparel manufacturing. MAS Holdings’ current portfolio encompasses businesses in IT, brands and industrial parks.

The company reported revenue of USD $2Billion in 2018 and has over 99,000 employees. The company has strategic partnerships with –

  • Brandot International Ltd, USA
  • EME Holdings, S.A de C.V, Mexico
  • Ets Lucien Noyon Et Cie, France
  • Groupo Deal, S.A de C.V, Mexico
  • Hogwarts Ltd, HK
  • Ling Chee Yan, Samuel, HK
  • MAST Industries, Inc, USA
  • New Impact (Pvt) Ltd Singapore
  • NIKE Inc, USA

The ransomware operators have leaked the first part, and there is a possibility that more leaked might be coming in the future.

Cyble researchers have verified the leak and confined that it compromises of sensitive documents including, financial records, employees information, audit findings conducted by the audit and accounting firm PwC and much more. In due course, we will be releasing more information about the leak as well.

Update: On April 27, 2020, the group leaked the second part of their leak (around 28GB) as below:

About Cyble:

Cyble Inc.’s mission is to provide organizations with a real-time view of their supply chain cyber threats and risks. Their SaaS-based solution powered by machine learning and human analysis provides organizations’ insights to cyber threats introduced by suppliers and enables them to respond to them faster and more efficiently.

Cyble strives to be a reliable partner/facilitator to its clients allowing them with unprecedented security scoring of suppliers through cyber intelligence sourced from open and closed channels such as OSINT, the dark web and deep web monitoring and passive scanning of internet presence. Furthermore, the intelligence clubbed with machine learning capabilities fused with human analysis also allows clients to gain real-time cyber threat intel and help build better and stronger resilience to cyber breaches and hacks. Due to the nature of the collected data, the company also offer threat intelligence capabilities out-of-box to their subscribers.


Comments are closed.

Scroll to Top