Garmin begins recovery after ransomware attack


Image copyright
Getty Images

Garmin’s technology powers all kinds of fitness trackers

US GPS and fitness tracking company Garmin is facing the aftermath of a ransomware attack, the BBC has confirmed.

The owners of its products could no longer use its services since Thursday.

However, some of its online tools are now delivered in a “limited” state, according to its online dashboard.

It is not known whether the company paid the blackmailers, but a source said it was in the “last stage of the recovery”.

BBC cyber reporter Joe Tidy said the malware involved was Wasted Locker – a program that scrambles the target’s data and was first detected in the wild around April. Victims are usually contacted once their computers are infected and are informed that they must transfer funds if they wish to return the files to their original state.

Some customers have reported that Garmin’s services appear to be working “partially” again.

Earlier reports claimed the company had been asked to pay $ 10million (£ 7.79million) to bring its systems back online.

Garmin has yet to comment.

  • Twitter hack: Bitcoin exchange “blocked 1000 transactions”
  • How hackers extorted $ 1.14 million from a US university

Some users reported on Twitter on Monday morning that their health and fitness data was now visible on Garmin’s mobile app.

However, many other functions still seemed offline.

Pilots using flyGarmin have not been able to download up-to-date aviation databases, which aviation regulators such as the FAA require pilots to have before they can fly.

Customers also could not log into Garmin Connect to record and analyze their health and fitness data.

In an email to its users on Sunday, Garmin said it would no longer respond to user queries about delayed downloads to its servers because “most problems will resolve themselves.”

Users have been warned that there may be a “week or more” delay for updated health and fitness data to appear on their accounts, due to a backlog.

The company also insisted that there was “no indication” that user data was stolen or deleted.


Please enter your comment!
Please enter your name here