Luxottica Confirms Ransomware Attack

Jamie Grill-Goodman
Senior Editor
Jamie Grill-Goodman profile picture

Italy-based eyewear retailer Luxottica has confirmed that a ransomware attack is responsible for widespread service outages affecting its organization.

On Friday evening, people began to report that the web sites for Ray-Ban, Sunglass Hut, LensCrafters, EyeMed, and Pearle Vision were not working, BleepingComputer reported.

The company claims that no customer data was accessed or stolen in the incident, but that its IT systems remain temperamental in the aftermath of the attack, according to TechRadar.

Italian media reported that operations at Luxottica plants in Agordo and Sedico were disrupted due to a significant computer system failure, and employees were sent home, Saryu Nayyar, CEO, Gurucul tells RIS.

“The apparent ransomware attack against Luxottica is more concerning for the likely infection vector rather than the payload,” says Nayyar. “The Citrix vulnerability (CVE-2019029781) that was most likely leveraged to access Luxottica's environment was discovered in late 2019 and patched early in 2020.  It should have been patched by now, which would have protected Luxottica if this was in fact the vector.”