Cyber Incident Victim: Pitney Bowes
Date:
Oct 2019
Location:
United States of America
Summary
Pitney Bowes experienced a ransomware attack disrupting certain client services, including postage refills, transaction uploads, supply orders, and account management, though its core postage meter and SendPro products remained operational. The company stated there was no evidence of compromised customer account data and engaged third-party consultants for forensic investigation and remediation efforts while assuring clients they were not at risk.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On October 14, 2019, Pitney Bowes publicly disclosed a ransomware attack impacting its operations. The mailing services company released a statement confirming the incident but provided minimal technical details about the attack vector, intrusion timeline, or specific ransomware variant involved. Pitney Bowes stated it found no evidence of compromise to customer account data during its initial assessment. The company engaged third-party cybersecurity consultants to conduct forensic investigations and support remediation efforts. While Pitney Bowes assured clients that core functionalities of its postage meter and SendPro products remained safe to use, critical account management features became unavailable following the attack.
Service disruptions prevented customers from refilling postage balances, uploading transaction records, ordering physical supplies, or accessing account management portals. The company maintained its position that clients faced no direct security risks despite these operational limitations. Pitney Bowes did not disclose whether the ransomware encrypted internal systems, affected specific business units, or demanded payment. No information was provided regarding attack detection methods, containment procedures, or data restoration timelines. The public statement focused on maintaining client assurance while acknowledging ongoing recovery efforts through external cybersecurity partnerships. Service restoration progress and forensic findings were not detailed in the initial disclosure.