This week, the manufacturer of wearable electronics and navigation equipment, Garmin, was forced to temporarily disable a number of services. It looks like a ransomware attack was to blame, and the ransomware affected the company's internal network and some production systems.
Garmin is currently undertaking extensive "repairs" to cope with the aftermath of the attack. Because of this, the official website, Garmin Connect user data synchronization service, aviation database service, as well as some production lines in Asia were temporarily disabled.
This outage also affects our call centers, and we are currently unable to receive any calls, emails or online chats. We are working to resolve this issue as quickly as possible and apologize for this inconvenience. (2/2)
– Garmin (@Garmin) July 23, 2020
Call centers were also affected by the outage, according to official reports posted on the company's website and Twitter, leaving the company unable to respond to calls, emails and online chats.
Edition ZDNet reports that the incident caused many problems for the company's customers, as most of them regularly use Garmin Connect to synchronize their runs and cycling data with the company's servers.
However, problems with wearable devices are far from the worst that has happened. Journalists write that the suspension of the flyGarmin service looks much more serious. This web service supports the company's line of aviation navigation equipment. And now that it is not working, the pilots have lost the ability to load aviation databases into the navigation systems of their aircraft. The fact is that in accordance with the requirements of the US Federal Aviation Administration, pilots are required to work only with an updated version of the database. In addition, the Garmin Pilot app, which is used for scheduling and planning flights, also does not function at times.
Garmin representatives declined to confirm to reporters that the sudden shutdown of services was caused precisely by the ransomware attack, while citing an ongoing investigation.
However, ZDNet writes that several Garmin employees have already shared the details of the attack on social networks, and they all call the incident a ransomware attack. Some employees associate this incident with the new WastedLocker ransomware, which appeared in the first half of this year. Journalists were unable to confirm or deny these data, so at the moment it is just a theory.
Meanwhile, the Taiwanese edition of iThome shared with readers an internal letter from Garmin, which states that the company's IT staff has been urgently dispatched to its Taiwanese factories, where "repairs" are scheduled for July 24 and July 25. The Taiwanese edition's own sources also associate this incident with a kind of "virus".