Supermarket chain Spinneys said it is looking into claims on Twitter that a ransomware group had published data taken from its internal server.
A series of tweets by ransomware monitoring account Ransom Watcher on Tuesday said that the Clop ransomware group published Spinneys data.
“Spinneys is aware of unverified emails being sent out from unidentifiable email addresses stating that a ransomware group may have leaked data hacked from our internal server on July 16,” the retailer said in a statement to The National.
“We continue to work closely with the e-crime department at Dubai Police to investigate the matter and keep our customers up-to-date.”
As more businesses adopt hybrid work models and undertake a rapid digital transformation to cope with coronavirus challenges, they are also more exposed to cyber threats.
Ransomware is malware that is designed to deny users or organisations access to their online data and files stored in computers or servers. All data is encrypted, and criminals demand payment for the decryption key.
More than 80 per cent of UAE organisations said they have the staff required to effectively manage a ransomware cyber attack, matching the global average, a June survey by Boston-based security company Cybereason found.
About 67 per cent of UAE respondents also said they have a plan in place to counter any potential ransomware attempt, compared with 72 per cent globally, the study revealed.
The main goal of Clop ransomware is to encrypt all files in an enterprise and demand a payment to receive a decryptor to re-access the affected files, according to a blog post by computer security software company McAfee.
Clop ransomware emerged in 2019, when it became a prevalent threat to organisations and businesses, according to cloud cyber security service company Mimecast. Clop ransomware also threatens to leak confidential information if no ransom is paid, it said.
To date, it is estimated that Clop ransomware has extorted more than $500 million from organisations, including multinational energy companies and at least two prominent US universities, according to Mimecast.
“Clop ransomware typically goes after assets like data backups, vouchers, email lists, financial records or other confidential information. Once Clop gains access to the data, the cybercriminals often leak portions of it to prove that they have access and threaten to leak more if the ransom is not paid,” it said.
The criminals behind Clop often set their sights on organisations with large budgets and demand high ransoms, some as much as $20m, according to Mimecast.
“Just like many other groups involved in human-operated ransomware attacks, Clop leverages the so-called double-extortion technique,” Oleg Skulkin, head of digital forensics and incident response team at cyber security company Group-IB, said.
“The Clop operators not only deploy cryptolockers, but also exfiltrate victims’ sensitive data. If the victim refuses to pay, the data is posted on a Dedicated Leak Site [DLS]. These sites may be available either via the dark web or even regular web.”
The Clop ransomware gang became the seventh-most active in the world with 107 victims uploaded on DLS between the first quarter of 2021 and the first quarter of 2022, according to the Ransomware Uncovered 2021/2022 report.
“We have observed their attacks in the UAE, Singapore, Netherlands, the US, Germany, Canada, the UK, India, France, Japan and other countries,” Mr Skulkin said.
“In June 2021, six Clop ransomware affiliates involved in cash-out services were arrested in Kyiv, Ukraine.”
Spinneys earlier said that some customer data stored for online delivery details was exposed to hackers during a security breach on July 16.
However, the retailer said no personal banking information of customers was compromised in the hacker attack as it does not store banking details on its internal servers.
“As has previously been confirmed, hackers accessed an internal server that contained customer data, including names, email addresses, mobile numbers, delivery addresses and previous order details,” Spinneys said.
“We urge our customers to remain vigilant against cyber criminals and deal only with people they trust. We are committed to handling our customers’ personal information responsibly and diligently at all times, and we deeply regret that this incident has occurred.”
What can victims do?
Always use only regulated platforms
Stop all transactions and communication on suspicion
Save all evidence (screenshots, chat logs, transaction IDs)
Report to local authorities
Warn others to prevent further harm
Courtesy: Crystal Intelligence
Who was Alfred Nobel?
The Nobel Prize was created by wealthy Swedish chemist and entrepreneur Alfred Nobel.
- In his will he dictated that the bulk of his estate should be used to fund "prizes to those who, during the preceding year, have conferred the greatest benefit to humankind".
- Nobel is best known as the inventor of dynamite, but also wrote poetry and drama and could speak Russian, French, English and German by the age of 17. The five original prize categories reflect the interests closest to his heart.
- Nobel died in 1896 but it took until 1901, following a legal battle over his will, before the first prizes were awarded.
The five pillars of Islam
Avatar: Fire and Ash
Director: James Cameron
Starring: Sam Worthington, Sigourney Weaver, Zoe Saldana
Rating: 4.5/5
The five pillars of Islam
Key facilities
- Olympic-size swimming pool with a split bulkhead for multi-use configurations, including water polo and 50m/25m training lanes
- Premier League-standard football pitch
- 400m Olympic running track
- NBA-spec basketball court with auditorium
- 600-seat auditorium
- Spaces for historical and cultural exploration
- An elevated football field that doubles as a helipad
- Specialist robotics and science laboratories
- AR and VR-enabled learning centres
- Disruption Lab and Research Centre for developing entrepreneurial skills
How to help
Send “thenational” to the following numbers or call the hotline on: 0502955999
2289 – Dh10
2252 – Dh 50
6025 – Dh20
6027 – Dh 100
6026 – Dh 200
INDIA SQUADS
India squad for third Test against Sri Lanka
Virat Kohli (capt), Murali Vijay, Lokesh Rahul, Shikhar Dhawan, Cheteshwar Pujara, Ajinkya Rahane, Rohit Sharma, Wriddhiman Saha, Ravichandran Ashwin, Ravindra Jadeja, Kuldeep Yadav, Mohammed Shami, Umesh Yadav, Ishant Sharma, Vijay Shankar
India squad for ODI series against Sri Lanka
Rohit Sharma (capt), Shikhar Dhawan, Ajinkya Rahane, Shreyas Iyer, Manish Pandey, Kedar Jadhav, Dinesh Karthik, Mahendra Singh Dhoni, Hardik Pandya, Axar Patel, Kuldeep Yadav, Yuzvendra Chahal, Jasprit Bumrah, Bhuvneshwar Kumar, Siddarth Kaul
MATCH DETAILS
Manchester United 3
Greenwood (21), Martial (33), Rashford (49)
Partizan Belgrade 0
Our legal consultant
Name: Hassan Mohsen Elhais
Position: legal consultant with Al Rowaad Advocates and Legal Consultants
Asia Cup Qualifier
Venue: Kuala Lumpur
Result: Winners play at Asia Cup in Dubai and Abu Dhabi in September
Fixtures:
Wed Aug 29: Malaysia v Hong Kong, Nepal v Oman, UAE v Singapore
Thu Aug 30: UAE v Nepal, Hong Kong v Singapore, Malaysia v Oman
Sat Sep 1: UAE v Hong Kong, Oman v Singapore, Malaysia v Nepal
Sun Sep 2: Hong Kong v Oman, Malaysia v UAE, Nepal v Singapore
Tue Sep 4: Malaysia v Singapore, UAE v Oman, Nepal v Hong Kong
Thu Sep 6: Final
Asia Cup
Venue: Dubai and Abu Dhabi
Schedule: Sep 15-28
Teams: Afghanistan, Bangladesh, India, Pakistan, Sri Lanka, plus the winner of the Qualifier
The Perfect Couple
Starring: Nicole Kidman, Liev Schreiber, Jack Reynor
Creator: Jenna Lamia
Rating: 3/5
Our legal columnist
Name: Yousef Al Bahar
Advocate at Al Bahar & Associate Advocates and Legal Consultants, established in 1994
Education: Mr Al Bahar was born in 1979 and graduated in 2008 from the Judicial Institute. He took after his father, who was one of the first Emirati lawyers
Timeline
2012-2015
The company offers payments/bribes to win key contracts in the Middle East
May 2017
The UK SFO officially opens investigation into Petrofac’s use of agents, corruption, and potential bribery to secure contracts
September 2021
Petrofac pleads guilty to seven counts of failing to prevent bribery under the UK Bribery Act
October 2021
Court fines Petrofac £77 million for bribery. Former executive receives a two-year suspended sentence
December 2024
Petrofac enters into comprehensive restructuring to strengthen the financial position of the group
May 2025
The High Court of England and Wales approves the company’s restructuring plan
July 2025
The Court of Appeal issues a judgment challenging parts of the restructuring plan
August 2025
Petrofac issues a business update to execute the restructuring and confirms it will appeal the Court of Appeal decision
October 2025
Petrofac loses a major TenneT offshore wind contract worth €13 billion. Holding company files for administration in the UK. Petrofac delisted from the London Stock Exchange
November 2025
180 Petrofac employees laid off in the UAE
Jetour T1 specs
Engine: 2-litre turbocharged
Power: 254hp
Torque: 390Nm
Price: From Dh126,000
Available: Now
Company%20Profile
%3Cp%3E%3Cstrong%3ECompany%3A%3C%2Fstrong%3E%20Astra%20Tech%3Cbr%3E%3Cstrong%3EStarted%3A%20%3C%2Fstrong%3EMarch%202022%3Cbr%3E%3Cstrong%3EBased%3A%20%3C%2Fstrong%3EDubai%3Cbr%3E%3Cstrong%3EFounder%3A%20%3C%2Fstrong%3EAbdallah%20Abu%20Sheikh%3Cbr%3E%3Cstrong%3EIndustry%3A%3C%2Fstrong%3E%20technology%20investment%20and%20development%3Cbr%3E%3Cstrong%3EFunding%20size%3A%3C%2Fstrong%3E%20%24500m%3C%2Fp%3E%0A
U19 WORLD CUP, WEST INDIES
UAE group fixtures (all in St Kitts)
- Saturday 15 January: UAE beat Canada by 49 runs
- Thursday 20 January: v England
- Saturday 22 January: v Bangladesh
UAE squad:
Alishan Sharafu (captain), Shival Bawa, Jash Giyanani, Sailles
Jaishankar, Nilansh Keswani, Aayan Khan, Punya Mehra, Ali Naseer, Ronak Panoly,
Dhruv Parashar, Vinayak Raghavan, Soorya Sathish, Aryansh Sharma, Adithya
Shetty, Kai Smith
The%C2%A0specs%20
%3Cp%3E%3Cstrong%3EEngine%3A%20%3C%2Fstrong%3E2-litre%204-cylinder%20mild%20hybrid%3Cbr%3E%3Cstrong%3ETransmission%3A%20%3C%2Fstrong%3E7-speed%20S%20tronic%3Cbr%3E%3Cstrong%3EPower%3A%20%3C%2Fstrong%3E265hp%20%2F%20195kW%3Cbr%3E%3Cstrong%3ETorque%3A%3C%2Fstrong%3E%20370Nm%3Cbr%3E%3Cstrong%3EPrice%3A%20%3C%2Fstrong%3Efrom%20Dh260%2C000%3Cbr%3E%3Cstrong%3EOn%20sale%3A%3C%2Fstrong%3E%20now%3C%2Fp%3E%0A
Company%20profile%20
%3Cp%3E%3Cstrong%3EName%3A%20%3C%2Fstrong%3EYodawy%3Cbr%3E%3Cstrong%3EBased%3A%3C%2Fstrong%3E%20Egypt%3Cbr%3E%3Cstrong%3EFounders%3A%20%3C%2Fstrong%3EKarim%20Khashaba%2C%20Sherief%20El-Feky%20and%20Yasser%20AbdelGawad%3Cstrong%3E%3Cbr%3ESector%3A%20%3C%2Fstrong%3EHealthTech%3Cbr%3E%3Cstrong%3ETotal%20funding%3A%20%3C%2Fstrong%3E%2424.5%20million%3Cbr%3E%3Cstrong%3EInvestors%3A%20%3C%2Fstrong%3EAlgebra%20Ventures%2C%20Global%20Ventures%2C%20MEVP%20and%20Delivery%20Hero%20Ventures%2C%20among%20others%3Cstrong%3E%3Cbr%3ENumber%20of%20employees%3A%3C%2Fstrong%3E%20500%3Cbr%3E%3C%2Fp%3E%0A
