Cencosud

Cencosud S.A. is a major Latin American retail conglomerate headquartered in Chile. The company operates a significant portfolio of supermarkets and department stores across multiple countries in the region, serving a broad consumer base through its physical retail outlets. Its business model encompasses the direct sale of goods to the public through these large-format stores, forming a core part of the retail infrastructure in its operational territories. The scale of its operations is indicated by its classification as a major conglomerate, with a footprint that extends beyond its home market into other nations within Latin America. This reach establishes it as a key player in the regional retail sector, managing a network of physical locations that are central to its revenue and customer engagement.

The company's operational resilience was publicly tested in November 2020 when it suffered a targeted ransomware attack attributed to the Egregor group. This incident resulted in the encryption of devices within its retail outlets, causing widespread service interruptions that directly impacted customer-facing operations. The disruption was severe enough to prevent the processing of proprietary credit card payments, halt the acceptance of product returns, and disrupt the fulfillment of online purchase pickups. The attack's methodology was consistent with Egregor's known tactics, which involved network-wide encryption and the likely exfiltration of data prior to deployment, as evidenced by ransom notes automatically printed in affected stores. While physical locations remained open, their functionality was severely limited, demonstrating the acute vulnerability of point-of-sale and logistics systems to such cyber extortion. The Egregor operation, itself linked to former affiliates of the Maze ransomware, has a history of employing a double extortion strategy, threatening to release stolen data to pressure victims into payment. This event highlighted the critical dependency of modern retail on uninterrupted IT systems and the specific threat posed by ransomware-as-a-service groups to large, multi-national commercial enterprises.