Garmin Connect Outage Caused By Ransomware Attack

Tuesday, 28 Jul, 2020

The attack occurred on July 23, when users began to lose access to apps including those that fuel its fitness devices.

After several days of outages and reports of a ransomware attack, Garmin has restored some online functionality to its wearable fitness trackers.

A hacker group called Evil Corp demanded $10m from the Global Positioning System giant in the latest high-profile ransomware attack.

For now, Garmin is only saying: "We have no indication that any customer data, including payment information from Garmin Pay, was accessed, lost, or stolen". Garmin says it expects to return to normal operations over the next few days. It is possible to restore the services on your Fenix watch but you need to reset your device for that. On Thursday, the enterprise issued a tweet declaring "we are at present suffering from an outage that influences Garmin Link", introducing that the outage "also influences our get in touch with facilities and we are now unable to get any phone calls, e-mails or on the web chats".

The ransomware in use was confirmed by Garmin employees who shared screens of the encrypted files.

The company's Garmin Pilot application, used by pilots to plan flights, was fully functional on Monday, as was the flyGarmin aviation database service, according to the company.

The company's production line in Taiwan is also believed to have been affected.

Some runners said online that while the outage does not stop them from training, not being able to use Garmin Connect means they can not track their workout data or share their routes on Strava, a social network for runners and cyclists. WastedLocker, according to TechCrunch, is a new type of ransomware that, like all ransomware, "infects computers and locks the user's files in exchange for a ransom, typically demanded in cryptocurrency".

To keep track of what features are online and which still have limited connectivity, check out Garmin's status page for a comprehensive breakdown. It has disrupted Garmin's online services for millions of users including Garmin Connect that helps sync users' data to the cloud and other devices.

Evidence is emerging the attack involved a ransomware strain known as WastedLocker, which security researchers suspect comes from a Russian hacking group known as Evil Corp.