Friday, July 23, 2021

Sophos Informs customers of Information exposure after database misconfiguration

Must Read

NSA Discovers new critical vulnerabilities in Exchange Servers

The National Security Agency on Tuesday said it had warned Microsoft of several serious problems that criminals could use...

New code for tech companies to give customers more choice and control over their data

The united kingdom government has unveiled plans to develop a new statutory code for technology firms that are designed...

Hackers ask 500 Bitcoin ransom from Tether

Tether, the issuer of the USDT stablecoin, claims to have received a ransom note asking for 500 bitcoin (currently worth about USD $22...

The company states that just a tiny subset of clients was affected.

UK-based cyber-security seller Sophos is presently advising clients via email about a safety breach that the firm endured earlier this week.

“On November 24, 2020, Sophos was advised of an entry permission issue at a tool utilized to store data on clients who’ve contacted Sophos Service,” the firm said in an email sent to clients.

Exposed information contained details like customer first and last names, email addresses, and telephone numbers (if supplied ).

A Sophos spokesperson supported the mails earlier today and informed that just a”small subset” of their firm’s clients were changed but didn’t supply an approximate amount.

Sophos said it heard of this misconfiguration from a safety researcher and mended the reported issue straight away.

“In Sophos, client privacy and safety are our top priority. We’re calling all affected clients,” the firm said. “Additionally, We’re implementing additional steps to Guarantee access permission settings are always protected”

This is the next significant safety incident Sophos has dealt with this season. Back in April, a cybercrime team found and mistreated a zero-day from the Sophos XG firewall to breach firms around the world.

The Turks set up the Asnarok trojan, and after the zero-day was publicly revealed they tried to set up ransomware — but finally failed.

Priyanshu Vijayvargiya
Founder and Editor-in-Chief of 'Virtualattacks Inc' Priyanshu Vijayvargiya is a cybersecurity analyst, Information Security professional, developer, and a white hat hacker.


Please enter your comment!
Please enter your name here

Latest News

OAIC: Uber found to have interfered with the privacy of over 1.2 million Australians

The Office of the Australian Information Commissioner (OAIC) has determined that Uber Technologies, Inc. and Uber B.V. have interfered...

Over 80 US Municipalities data are exposed due to Misconfigured Amazon S3

A team of Cybersecurity researchers at Wizcase found major data exposure of Over 80 US Municipalities due to the Misconfigured Amazon S3 Bucket. This happened...

Formbook malware Upgraded as an XLoader malware to Attack macOS Systems

Researchers have spotted an upgraded malware variant of Formbook malware which is now Upgraded as an XLoader malware to Attack macOS Systems. Cybersecurity researchers on...

Millions of HP, Samsung, Xerox Printers are Vulnerable to 16 year old bug

A 16-year-old security vulnerability affects Millions of HP, Samsung, Xerox Printers Driver allows attackers to gain admin rights on systems using the vulnerable driver...

MosaicLoader malware targets cracked software via SEO poisoning

New MosaicLoader malware targets users that are searching to download cracked software. Cybercriminals run ad campaigns in search engine results to boost their malicious...

More Articles Like This