Chilean retail giant Cencosud is currently dealing with an Egregor ransomware infection affecting multiple stores. Affected stores remained open, though some services were impacted due to the incident. One store in Buenos Aires is warning customers that they could not accept Cencosud cards, store returns or allow customers to pick up online orders.
Sign outside a Cencosud store in Buenos Aires
Source: Lucas Aie (@Lucasaie84)
Videos also began to surface of the ransom note being printed from point of sale (POS) systems at some store locations. According to BleepingComputer, this is a known “feature” of the ransomware. Unfortunately, Egregor seems to show no signs of slowing down after making a big debut with its first few victims. As of today, their data leak website currently lists 105 victims with the latest update being about Barnes & Noble.