Connect with us

Hi, what are you looking for?



Pitney Bowes Says Disruptions Caused by Ryuk Ransomware

Global shipping and ecommerce giant Pitney Bowes revealed on Thursday that the recent service disruptions were caused by a piece of ransomware known as Ryuk.

Global shipping and ecommerce giant Pitney Bowes revealed on Thursday that the recent service disruptions were caused by a piece of ransomware known as Ryuk.

The company informed customers on Monday that some services had been unavailable due to a piece of ransomware that encrypted files on some systems. I an update shared on Thursday, the company described the security incident as “the Ryuk virus malware attack.”

The incident impacted the company’s mailing services, customer account access, the supplies web store, Software and Data Marketplace downloads, and some commerce services.

Pitney Bowes says it has made significant progress in restoring affected systems, and many services are now fully functional.

The Ryuk ransomware emerged in the summer of 2018 and researchers initially found some evidence suggesting that the malware may have been developed by North Korean hackers. However, further research showed that the initial attribution to North Korea was likely incorrect.

Ryuk has hit a wide range of organizations. It’s said to have been used in the attack on Chicago-based Tribune Publishing, an incident that resulted in the LA Times, New York Times, and Wall Street Journal newspapers being delivered late.

The ransomware also hit a cloud hosting provider and some U.S. cities, some of which have agreed to pay hundreds of thousands of dollars to recover their files.

Advertisement. Scroll to continue reading.

Related: ‘Coordinated’ Ransomware Attack Hits 23 Towns in Texas

Related: Network Shares Are a Primary Target for Ransomware

Related: The Growing Threat of Targeted Ransomware

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join security experts as they discuss ZTNA’s untapped potential to both reduce cyber risk and empower the business.


Join Microsoft and Finite State for a webinar that will introduce a new strategy for securing the software supply chain.


Expert Insights

Related Content


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...


Luxury retailer Neiman Marcus Group informed some customers last week that their online accounts had been breached by hackers.


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.

Artificial Intelligence

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Data Breaches

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...