{"id":44129,"date":"2026-03-04T07:39:12","date_gmt":"2026-03-03T23:39:12","guid":{"rendered":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/2026\/03\/04\/paint-maker-giant-akzonobel-confirms-cyberattack-on-u-s-site\/"},"modified":"2026-03-04T07:39:12","modified_gmt":"2026-03-03T23:39:12","slug":"paint-maker-giant-akzonobel-confirms-cyberattack-on-u-s-site","status":"publish","type":"post","link":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/2026\/03\/04\/paint-maker-giant-akzonobel-confirms-cyberattack-on-u-s-site\/","title":{"rendered":"Paint maker giant AkzoNobel confirms cyberattack on U.S. site"},"content":{"rendered":"\n

\"Paint<\/p>\n

The multinational Dutch paint company AkzoNobel has confirmed to BleepingComputer that hackers breached the network of one of its U.S. sites.<\/p>\n

Following a data leak from the Anubis ransomware gang, a company spokesperson said that the intrusion has been contained and that the impact is limited.<\/p>\n

“AkzoNobel has identified a security incident at one of our sites in the United States. The incident was limited to the respective site and was already contained,” the company told BleepingComputer.<\/p>\n

“The impact is limited, and we are taking the appropriate steps to notify and support impacted parties, and will work closely with relevant authorities.”<\/p>\n

AkzoNobel is a major paints and coatings company with 35,000 employees. It has an annual revenue exceeding $12 billion and active operations in over 150 countries. Brands under its corporate umbrella include Dulux, Sikkens, International, and Interpon.<\/p>\n

Anubis ransomware claims to have stolen from AkzoNobel 170GB of data, almost 170,000 files, and leaked on its leak site samples that include screenshots of select documents and a list of the stolen files.<\/p>\n

\n
\"Paint
AkzoNobel entry on the Anubis ransomware site<\/strong>
Source: BleepingComputer<\/em><\/figcaption><\/figure>\n<\/div>\n

The published data contains confidential agreements with high-profile clients, email addresses and phone numbers, private email correspondence, passport scans, material testing documents, and internal technical specification sheets.<\/p>\n

At the time of writing, the Anubis leak is only partial. AkzoNobel did not share with BleepingComputer any information on whether it engaged with the threat actor.<\/p>\n

Anubis is a ransomware-as-a-service (RaaS) operation that launched in December 2024, offering affiliates 80%<\/a> of the paid ransoms.<\/p>\n

In February 2025, the operators launched an affiliate program on the RAMP forum, boosting its activity and influence in the cybercrime space.<\/p>\n

In June the same year, Anubis added to its arsenal a data wiper<\/a> that destroys the victim’s files to make recovery impossible.<\/p>\n