Friday, January 22, 14:24
Home security Cognizant: Data breach after ransomware attack

Cognizant: Data breach after ransomware attack

Cognizant

Η company IT services, Cognizant, stated that some unencrypted data were violated during one attack of Maze Ransomware, in April.

Cognizant is one of the largest IT companies in the world with about 300.000 employees and revenues of more than $ 15 billion.

As an MSP, Cognizant manages many issues remotely customers (troubleshooting, updating, monitoring security them etc).

On April 17, Cognizant began shipping e-mail to its customers to warn them that the company had been attacked by Maze Ransomware. The notice asked them to disconnect from the company's systems so that they would not be affected by attack.

This email also contained some evidence of infringement, such as: IP addresses used by Maze and file hashes for kepstl32.dll, memes.tmp and maze.dll files. These IP addresses and the files are known to have been used in previous attacks by them hackers of Maze ransomware.

While Cognizant said at the time that the attack came from the Maze gang, the hackers they denied being behind the attack.

ransomware

Violation and most likely theft of the violated data

In two letters of information about the violation datafiled with the California Attorney General's Office, Cognizant states that Maze Ransomware operators were active on the company's network between April 9 and 11.

As long as they had access, "most likely stolen a limited amount of data from Cognizant systems ”.

Before the development of ransomware and encryption devices, Maze Ransomware operators spread across the network and steal files.

After stealing data, hackers threaten to leak it to a site they have created. This site usually displays files of victims who do not pay a ransom.

Cognizant has warned that hackers may have stolen sensitive personal information data such as SSN, tax information, financial information, driving licenses and passports.

As for employees, the company said corporate credit cards may also have been exposed.

For those affected, Cognizant provides the service Dark web free monitoring, for one year.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortresshttps://www.secnews.gr
Pursue Your Dreams & Live!

LIVE NEWS

Netflix: Watch the 9 best Anime movies of all time

One of the good things about the pandemic was that many people were introduced to the anime world. And the issue with anime is ...

CHwapi: Windows BitLocker "hit" the Belgian hospital!

The CHwapi hospital in Belgium was attacked by a cyber attack on January 17, with hackers claiming to have encrypted 40 servers and 100 ...

CPU / GPU Lotteries: Newegg sells the few on the market

Hardware shortages are not uncommon, but the pandemic has worsened the situation. The whole planet is closed to ...

United Kingdom: Malware infects laptops delivered to students

In the context of e-learning implemented in many countries since the outbreak of the COVID-19 pandemic, governments are distributing the necessary equipment ...

iOS 14.4: Anti-tracking feature released to developers

Apple yesterday released to developers "Release Candidates" for iOS 14.4 and the corresponding iPad. It is probably the last step ...

Sophos: "Iranian company behind MrbMiner crypto-mining botnet"!

Cybersecurity company Sophos says it has uncovered links between MrbMiner crypto-mining botnet operators and a small Iranian development company ...

A minor sued Twitter for not removing child pornography material

According to court documents, Twitter received a lawsuit as it allegedly refused to remove child pornography content from its site ....

Microsoft Edge will notify you if your password is compromised

A new built-in password generator and a possibility to monitor the credentials that have leaked to Windows and macOS systems, is released by ...

Teespring: Hacker leaked data of millions of its users!

A hacker leaked data on millions of registered Teespring users on January 17 - an online portal that allows users to create and ...

QNAP: New Dovecat crypto-miner infects NAS devices

QNAP has warned its customers about a new malware (crypto-miner) called Dovecat, which targets NAS (network-attached storage) devices ...