Cactus RANSOMWARE gang hit the Swedish retail and grocery provider Coop

The Cactus ransomware group has claimed responsibility for hacking Swedish grocery giant Coop, threatening to disclose over 21,000 directories of personal information. Coop, which boasts about 800 stores and is co-owned by 3.5 million members, previously shut down around 500 locations due to a supply chain ransomware attack impacting its software provider, Visma. Cactus’ operation, active since March 2023, uses various tools and tactics including data exfiltration and automated encryption processes.