Security News > 2020 > June > Nothing fills you with confidence in an IT contractor more than hearing its staff personal records were stolen by ransomware hackers. Right, Cognizant?
Staff records - from social-security and corporate credit card numbers, to passport and bank account details - were siphoned from Cognizant by hackers who then doused the IT contractor in ransomware.
A pair of disclosures [PDF] from Cognizant to the California Attorney General's office, mandated by US state law, this week shed more light on its Maze ransomware infection.
Here's what Cognizant's chief people officer Becky Schmitt told staff yesterday, according to the filings....and.... A spokesperson for Cognizant further clarified in an email to The Register: "It involved certain personal information related to some current and former Cognizant personnel and individuals involved in corporate transactions." Said folks are based in and outside the US, we're told.
A leak of internal info was a definite possibility when Cognizant said back in April it had become the latest victim of the Maze gang.
For what it's worth, Cognizant - which employs close to 300,000 people and rakes in billions of dollars a year - said it hasn't heard of any fraud taking place using the records, so employees may be in the clear for now.
News URL
https://go.theregister.com/feed/www.theregister.com/2020/06/18/cognizant_data_theft/
Related news
- Belarusian-Ukrainian Hacker Extradited to U.S. for Ransomware and Cybercrime Charges (source)
- Pioneer Kitten: Iranian hackers partnering with ransomware affiliates (source)
- Iranian hackers work with ransomware gangs to extort breached orgs (source)
- Microsoft: Vanilla Tempest hackers hit healthcare with INC ransomware (source)