Sophos security breach due to error

The security company, from the United Kingdom, informed her customers via email about a security breach she suffered earlier in the week.

“On November 24, 2020, Sophos was made aware of an access authorization issue in a used to store information from customers who have contacted Sophos Support, ”the company said in an email sent to its customers.

Exposed information included details such as customer name and surname, email addresses and telephone numbers (if provided).

One millionA Sophos spokesperson confirmed the messages and told ZDNet that a "small subset" of the company's customers were affected, but did not give an approximate number.

Sophos said it was aware of the errors by a security researcher and promptly fixed the reported issue.

"At Sophos, privacy and customer safety are always our number one priority. We communicate with all affected customers. In addition, we are implementing additional measures to ensure that access licensing arrangements are consistently secure. ”

This is the second major security incident faced by Sophos this year. In April, a team discovered that a 0day in the Sophos XG firewall was being used to breach companies around the world. The attackers developed the Asnarok and once it was publicly revealed, they tried to run ransomware, but failed.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).