Soldier
Regular
- Joined
- 20.10.20
- Messages
- 88
- Reaction score
- 737
- Points
- 83
Sophos, a British provider of cybersecurity solutions, is notifying customers of an incident that the company encountered earlier this week. The official announcement reads:
"on November 24, 2020, Sophos became aware of a problem with access rights to the tool used to store information about customers who contacted Sophos support."
Due to the company's error, information about Sophos customers was leaked, including the following data: first and last name, email addresses and phone numbers (if they were provided).
Sophos representatives told ZDNet that only "small groups" of customers were affected, but did not specify even the approximate number of victims of the leak. It is also reported that the company learned about the incorrect configuration of the tool from a security researcher, and the problem has now been fixed.
The publication recalls that this is the second serious incident that Sophos has faced this year. In April 2020, a group of hackers discovered a 0-day vulnerability in the Sophos XG firewall. Criminals used this bug to hack companies around the world and deployed the asnarok Trojan in infected networks.
"on November 24, 2020, Sophos became aware of a problem with access rights to the tool used to store information about customers who contacted Sophos support."
Due to the company's error, information about Sophos customers was leaked, including the following data: first and last name, email addresses and phone numbers (if they were provided).
Sophos representatives told ZDNet that only "small groups" of customers were affected, but did not specify even the approximate number of victims of the leak. It is also reported that the company learned about the incorrect configuration of the tool from a security researcher, and the problem has now been fixed.
The publication recalls that this is the second serious incident that Sophos has faced this year. In April 2020, a group of hackers discovered a 0-day vulnerability in the Sophos XG firewall. Criminals used this bug to hack companies around the world and deployed the asnarok Trojan in infected networks.