Sophos warns customers it was hit by data breach Data Breach
UK cybersecurity firm Sophos has disclosed that it has become the victim of a data breach. A small number of customers received an email earlier this week informing them that their data had been exposed after unauthorized personnel used a misconfigured tool to gain access to sensitive information.
“On November 24, 2020, Sophos was advised of an access permission issue in a tool used to store information on customers who have contacted Sophos Support,” the email read. “As a result, some data from a small subset of Sophos customers was exposed. We quickly fixed the issue.”
Currently, it remains unclear how the breach was discovered, while the number of customers affected has also not been disclosed. it has been revealed, however, that customer names, email addresses, and telephone numbers were among the data exposed by the breach.
Not the first time
Fortunately, Sophos acted quickly to put a stop to the data exposure and the information is no longer at risk. Additional measures have also been put in place to prevent permission issues from causing similar incidents in the future. Nevertheless, it would be understandable if some Sophos customers remained unconvinced. Earlier this year, the firm also disclosed that its XG Firewall was vulnerable to a zero-day SQL injection vulnerability.
Although it may be more embarrassing when an incident like this occurs at an organization that stakes its reputation on cybersecurity, it happens with surprising regularity. Aside from the Sophos breach, Avast, Trend Micro, and a number of other security firms have recently become victims of cyberattacks.
While the Sophos incident was relatively minor, affected customers should remain extra vigilant against phishing attacks, as cyberattackers may attempt to leverage ill-gotten data in follow-up exploits.
UK cybersecurity firm Sophos has disclosed that it has become the victim of a data breach. A small number of customers received an email earlier this week informing them that their data had been exposed after unauthorized personnel used a misconfigured tool to gain access to sensitive information. “On November…
Recent Posts
- Fujifilm’s X-T50 has a special dial for film simulations
- Samsung mocks Apple’s crushing iPad Pro ad with its own ‘UnCrush’ pitch
- Netflix to add more live content, including two NFL games on Christmas Day 2024
- Google I/O 2024: all the news from the developer conference
- Quordle today – hints and answers for Thursday, May 16 (game #843)
Archives
- May 2024
- April 2024
- March 2024
- February 2024
- January 2024
- December 2023
- November 2023
- October 2023
- September 2023
- August 2023
- July 2023
- June 2023
- May 2023
- April 2023
- March 2023
- February 2023
- January 2023
- December 2022
- November 2022
- October 2022
- September 2022
- August 2022
- July 2022
- June 2022
- May 2022
- April 2022
- March 2022
- February 2022
- January 2022
- December 2021
- November 2021
- October 2021
- September 2021
- August 2021
- July 2021
- June 2021
- May 2021
- April 2021
- March 2021
- February 2021
- January 2021
- December 2020
- November 2020
- October 2020
- September 2020
- August 2020
- July 2020
- June 2020
- May 2020
- April 2020
- March 2020
- February 2020
- January 2020
- December 2019
- November 2019
- December 2011