Home appliance giant Whirlpool hit in Nefilim ransomware attack
By Lawrence Abrams
Published: 2020-12-28 · Archived: 2026-04-05 16:56:14 UTC
Home appliances giant Whirlpool suffered a ransomware attack by the Nefilim ransomware gang who stole data before
encrypting devices.
Whirlpool is one of the world's largest home application makers with appliances under its name and KitchenAid, Maytag,
Brastemp, Consul, Hotpoint, Indesit, and Bauknecht. Whirlpool employs 77,000 people at 59 manufacturing & technology
research centers worldwide and generated approximately $20 billion in revenue for 2019.
Over the weekend, the Nefilim ransomware gang published files stolen from Whirlpool during a ransomware attack. The
leaked data included documents related to employee benefits, accommodation requests, medical information requests,
background checks, and more. 
https://www.bleepingcomputer.com/news/security/home-appliance-giant-whirlpool-hit-in-nefilim-ransomware-attack/
Page 1 of 4

0:00
https://www.bleepingcomputer.com/news/security/home-appliance-giant-whirlpool-hit-in-nefilim-ransomware-attack/
Page 2 of 4

Visit Advertiser websiteGO TO PAGE
Whirlpool data leak on Nefilim site
A source in the cybersecurity industry has told BleepingComputer that the Nefilim ransomware gang attacked Whirlpool in
the first weekend of December.
Nefilim ransom note
If you have first-hand information about this or other unreported cyberattacks, you can confidentially contact us on Signal
at +16469613731 or on Wire at @lawrenceabrams-bc.
In a statement to BleepingComputer, Whirlpool confirmed the attack and that their systems have been fully restored from
the attack.
"We live in a time when Illegal cyber crimes are all too prevalent across every industry. Data privacy is a top priority at
Whirlpool Corporation and we invest in the technology and processes to help protect our people, our data and our
operations."
https://www.bleepingcomputer.com/news/security/home-appliance-giant-whirlpool-hit-in-nefilim-ransomware-attack/
Page 3 of 4

"Last month Whirlpool Corporation discovered ransomware in our environment. The malware was detected and contained
quickly. We are unaware of any consumer information that was exposed. There is no operational impact at this time,"
Whirlpool Corporation told BleepingComputer in an email.
Nefilim is not a particularly active ransomware operation but is known for attacks on other large and well-known victims in
the past.
Other victims attacked by Nefilim include Orange S.A., Dussman Group, Luxottica, and  Toll Group.
Updae 12/28/20: Whirlpool's systems are fully restored, not slowly recovering as initially stated.
Automated Pentesting Covers Only 1 of 6 Surfaces.
Automated pentesting proves the path exists. BAS proves whether your controls stop it. Most teams run one without the
other.
This whitepaper maps six validation surfaces, shows where coverage ends, and provides practitioners with three diagnostic
questions for any tool evaluation.
Source: https://www.bleepingcomputer.com/news/security/home-appliance-giant-whirlpool-hit-in-nefilim-ransomware-attack/
https://www.bleepingcomputer.com/news/security/home-appliance-giant-whirlpool-hit-in-nefilim-ransomware-attack/
Page 4 of 4