Sam's Club supermarket chain investigating potential ransomware attack

Sam's Club, the warehouse supermarket chain owned by Walmart, is investigating claims of a security breach after the Clop ransomware gang added the retailer to its dark web leak site on Friday.

Sam's Club operates over 600 warehouse supermarkets across the United States and Puerto Rico with nearly 200 additional locations in Mexico and China.

Clop ransomware gang has not published any evidence supporting their claim of a breach. The cybercriminals only stated on their leak site that the Arkansas wholesaler "doesn't care about its customers, it ignored their security."

The company confirmed that they are aware of reports regarding a potential security incident and are investigating the matter. No details are disclosed about any data stolen or number of affected individuals.

This is not Sam's Club's first security incident. In October 2020, the company notified certain customers that their accounts had been compromised in credential stuffing attacks, prompting automatic password resets for SamsClub.com accounts. At that time, the company clarified that there was no breach of their systems, attributing the incident to credentials obtained through phishing campaigns, malware, or breaches at other companies.