{
	"id": "d4a9d748-b75f-498a-8751-e467b580807b",
	"created_at": "2026-04-06T00:10:09.766286Z",
	"updated_at": "2026-04-10T13:13:03.455291Z",
	"deleted_at": null,
	"sha1_hash": "3dab3240d914d816dbaea8de32f51071f7b18215",
	"title": "Retail giant Sam\u0026rsquo;s Club investigates Clop ransomware breach claims",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 2069144,
	"plain_text": "Retail giant Sam\u0026rsquo;s Club investigates Clop ransomware breach\r\nclaims\r\nBy Sergiu Gatlan\r\nPublished: 2025-03-28 · Archived: 2026-04-05 16:31:34 UTC\r\nSam's Club, an American warehouse supermarket chain owned by U.S. retail giant Walmart, is investigating claims of a\r\nClop ransomware breach.\r\nThe Walmart division operates over 600 warehouse clubs with millions of members across the United States and Puerto\r\nRico and almost 200 additional locations in Mexico and China.\r\nSam's Club has over 2.3 million employees and reported a total revenue of $84.3 billion for the fiscal year ending January\r\n31, 2023.\r\nhttps://www.bleepingcomputer.com/news/security/retail-giant-sams-club-investigates-clop-ransomware-breach-claims/\r\nPage 1 of 4\n\n0:00\r\nhttps://www.bleepingcomputer.com/news/security/retail-giant-sams-club-investigates-clop-ransomware-breach-claims/\r\nPage 2 of 4\n\nVisit Advertiser websiteGO TO PAGE\r\n\"We are aware of reports regarding a potential security incident and are actively investigating the matter,\" a Sam's Club\r\nspokesperson told BleepingComputer. \"Protecting the privacy and security of our members' information is a top priority at\r\nSam's Club. We take these concerns seriously and will communicate further as appropriate.\"\r\nWhile the company didn't provide additional details regarding this ongoing investigation, the Clop ransomware gang added\r\na new Sam's Club entry to its dark web leak site on Friday.\r\nThe cybercrime group has yet to publish any proof of the breach, and so far, the threat actors only said on their leak site that\r\nthe Arkansas wholesaler \"doesn't care about its customers, it ignored their security.\"\r\nSam's Club entry on Clop's site (BleepingComputer)\r\nClop's claims of a Sam's Club breach come after the ransomware gang also started extorting dozens of victims in January,\r\nbreached in a massive wave of data theft attacks targeting a zero-day vulnerability (CVE-2024-50623) in Cleo secure file\r\ntransfer software patched in October.\r\nWhile it's currently unknown how many companies were breached in the Cleo zero-day attacks, Cleo claims its products are\r\nused by over 4,000 organizations worldwide.\r\nArizona-based Western Alliance Bank, one of many companies added to Clop's leak site in January, notified nearly 22,000\r\ncustomers last week that their personal information was stolen in October after exploiting a vulnerability in third-party\r\nsecure file transfer software.\r\nThe Clop ransomware gang was previously linked to other data theft campaigns targeting zero-day flaws in Accellion FTA,\r\nMOVEit Transfer, and GoAnywhere MFT.\r\nThis isn't the first security incident that impacted Sam's Club customers in recent years. In October 2020, Sam's Club\r\nnotified some customers that their accounts were compromised in credential stuffing attacks and automatically reset their\r\nSamsClub.com passwords.\r\n\"This was not a breach of our systems, but rather a case of these parties obtaining user names and passwords from phishing\r\ncampaigns, planting malware or breaches at other companies,\" a Sam's Club spokesperson told BleepingComputer at the\r\ntime. \"We have reset passwords for these accounts and are taking additional measures to protect the accounts from\r\nfraudulent activity.\"\r\nhttps://www.bleepingcomputer.com/news/security/retail-giant-sams-club-investigates-clop-ransomware-breach-claims/\r\nPage 3 of 4\n\nAutomated Pentesting Covers Only 1 of 6 Surfaces.\r\nAutomated pentesting proves the path exists. BAS proves whether your controls stop it. Most teams run one without the\r\nother.\r\nThis whitepaper maps six validation surfaces, shows where coverage ends, and provides practitioners with three diagnostic\r\nquestions for any tool evaluation.\r\nSource: https://www.bleepingcomputer.com/news/security/retail-giant-sams-club-investigates-clop-ransomware-breach-claims/\r\nhttps://www.bleepingcomputer.com/news/security/retail-giant-sams-club-investigates-clop-ransomware-breach-claims/\r\nPage 4 of 4",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"origins": [
		"web"
	],
	"references": [
		"https://www.bleepingcomputer.com/news/security/retail-giant-sams-club-investigates-clop-ransomware-breach-claims/"
	],
	"report_names": [
		"retail-giant-sams-club-investigates-clop-ransomware-breach-claims"
	],
	"threat_actors": [],
	"ts_created_at": 1775434209,
	"ts_updated_at": 1775826783,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/3dab3240d914d816dbaea8de32f51071f7b18215.pdf",
		"text": "https://archive.orkl.eu/3dab3240d914d816dbaea8de32f51071f7b18215.txt",
		"img": "https://archive.orkl.eu/3dab3240d914d816dbaea8de32f51071f7b18215.jpg"
	}
}