reports that after a ransomware attack on one of Puma’s North American workforce management service providers, Kronos, in December 2021, cybercriminals also stole Puma North America employees’ data from the Kronos private cloud. Ransomware attacks involve malware that is installed undetected in the victim’s system. The malware then encrypts either the files or the entire computer. The hacker thus gains control over the computer and demands a ransom. As long as the victim does not pay the ransom, the device remains encrypted. Puma was notified of the attack on Jan. 10. The stolen data included Social Security numbers, among other things. Among the more than 6,600 people affected are also relatives of Puma employees. Puma North America assured that no customer data was stolen.