Wearable device maker Garmin allegedly hit by a ransomware attack

Wearable device maker Garmin allegedly hit by a ransomware attack

Smartwatch and wearables manufacturer Garmin had to shut down some of its connected services and call centers on July 23 due to an incident that company describes as a worldwide outage.

“We are currently experiencing an outage that affects Garmin.com and Garmin Connect. This outage also affects our call centers, and we are currently unable to receive any calls, emails or online chats. We are working to resolve this issue as quickly as possible and apologize for this inconvenience,” currently reads a notification alert on the company’s website.

In a Twitter message Garmin added that the outage also affected its mobile app. The company's Indian branch tweeted that company’s servers are currently down for maintenance, which may “limit the performances of Garmin Connect Mobile & Website, and Garmin Express.”

While Garmin did not publicly share the information on the possible cause of the outage, according to Taiwanese tech news site iThome, an internal notice the company sent to various departments in Taiwan said that its “internal IT servers and databases were attacked and production lines were also suspended.” According to the news site, Garmin expects services to remain down possibly through July 25th while it works to resolve the issue and secure user data.

Some Garmin employees who took to social media to share the details of the attack speculate the involvement of a new strain of the WastedLocker ransomware, which has previously been attributed to one of the largest malware operations on the internet, Evil Corp.

Garmin has refused to confirm that the outage was caused by a ransomware attack, citing the ongoing investigation.

Back to the list

Latest Posts

Cyber Security Week in Review: July 4, 2025

Cyber Security Week in Review: July 4, 2025

In brief: Google patches Chrome 0Day, the US is on the hunt for North Korean IT workers, and more.
4 July 2025
AI chatbots fall for phishing scams

AI chatbots fall for phishing scams

The models provided the correct URL only 66% of the time; nearly 30% of responses pointed users to dead or suspended domains.
3 July 2025
Chinese hackers exploited Ivanti flaws in attacks against French government

Chinese hackers exploited Ivanti flaws in attacks against French government

ANSSI believes that the Houken campaign is operated by ‘UNC5174’, an entity believed to act as an initial access broker for China’s Ministry of State Security.
2 July 2025