Supply chain
β Supply Chain
SpreadGroup Customers Third-Party Breach (July 2021)
Primary Source βIncident Details
DarkSide behind Guess breach. Print-on-demand vendor data compromises. Patient data phished from lender. Gambling venue operator breached.. Experts guess DarkSide behind Guess cyberattack. Spreadshop breached, warns customers that their data may be at risk. ClearBalance phished for patient data. Gaming venue operator Dotty’s sustains data breach. Third-party company: Spreadshirt, Spreadshop, and TeamShirts.
Technical Details
- Initial Attack Vector
- Compromise of third-party service provider / vendor relationship
- Vendor / Product
- Spreadshirt, Spreadshop, and TeamShirts
- Supply Chain Attack
- β Confirmed third-party / vendor compromise
Timeline
- 2021-07-01 Breach occurred
- 2021-07-13 Publicly disclosed