Gadgets News

Bose confirms the ransomware attack that exposes employee data

This year has seen piracy groups in ransom make a bunch of high-profile attacks on businesses as varied as the fuel supplier. Culuniale, laptop manufacturer Acer and Irish and American health services. The latest company to disclose a ransomware-powered data breach is audio device manufacturer Bose, according to the cybersecurity site Bleeping Computer. In a notification letter filed with the New Hampshire Attorney General’s Office, Bose said he “experienced a sophisticated cyber incident that led to the deployment of malware / ransomware in” his “environment”.

Breaking his handling of the breach, Bose said he first detected the attack on March 7 and immediately began working to “contain it” with the help of technical staff and security experts. He added that he has since safely restored his systems. On April 29, the company discovered that the perpetrator of the attack may have access to a small number of internal spreadsheets containing information about former and former employees. The forms included workers ’names, social security numbers and compensation information.

Bose added that his forensic evidence indicates that the “threat actor interacted with a limited set of cartels.” But, he admitted that he had no way to confirm if any of the data had been stolen. The company has hired experts to monitor the Dark Web for signs of “filtered” information. As of now, Bose said she had not received “any indication” that the data exposed had been “illegally disseminated, sold or otherwise disclosed.” The company said Bleeping Computer who did not make a ransom payment.

To mitigate against future attacks, Bose said it strengthens safeguards in its systems, including advanced protection against malware and ransomware in endpoints. He also conducted a detailed forensic examination on his affected servers, blocking the malicious files used in the attack and changing passwords and access keys for all service accounts.

Violation of Bose data is the latest wake-up call for businesses. It serves as another reminder that criminal pirates always profit more from it ribombu to the company work practices caused by the pandemic. As more companies embrace hybrid work models, where staff split their time between home and office, weak security systems are likely to continue to be attacked.

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, you can earn an affiliate commission.


Source link

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button