Saturday, October 16, 2021

Sophos Informs customers of Information exposure after database misconfiguration

Must Read

Ongoing ransomware attack leaves systems badly affected, says Scottish Environmental Regulator

About a month after the first attack, the Scottish Environmental Protection Agency (SEPA) systems remained offline - and stolen...

Amnesia:33 vulnerabilities Impact Countless Industrial and Smart Devices

Security researchers have identified 33 security defects in four accessible TCP/IP piles used across a broad selection of intelligent...

Hacker leaks data of MeetMindful dating site

The data belongs to the MeetMindful dating site and includes everything from real names to Facebook account tokens and...

The company states that just a tiny subset of clients was affected.

UK-based cyber-security seller Sophos is presently advising clients via email about a safety breach that the firm endured earlier this week.

“On November 24, 2020, Sophos was advised of an entry permission issue at a tool utilized to store data on clients who’ve contacted Sophos Service,” the firm said in an email sent to clients.

Exposed information contained details like customer first and last names, email addresses, and telephone numbers (if supplied ).

A Sophos spokesperson supported the mails earlier today and informed that just a”small subset” of their firm’s clients were changed but didn’t supply an approximate amount.

Sophos said it heard of this misconfiguration from a safety researcher and mended the reported issue straight away.

“In Sophos, client privacy and safety are our top priority. We’re calling all affected clients,” the firm said. “Additionally, We’re implementing additional steps to Guarantee access permission settings are always protected”

This is the next significant safety incident Sophos has dealt with this season. Back in April, a cybercrime team found and mistreated a zero-day from the Sophos XG firewall to breach firms around the world.

The Turks set up the Asnarok trojan, and after the zero-day was publicly revealed they tried to set up ransomware — but finally failed.

Priyanshu Vijayvargiya
Founder and Editor-in-Chief of 'Virtualattacks Inc' Priyanshu Vijayvargiya is a cybersecurity analyst, Information Security professional, developer, and a white hat hacker.

Leave a reply

Please enter your comment!
Please enter your name here

Latest News

Unified endpoint management automation software to boost endpoint security

Endpoints are constantly connected to the internet, so they offer a gateway for cyberattacks. Endpoint security is simply the process...

Attackers Using Morse Code in phishing campaign to Evade Detection

Microsoft on Thursday revealed the techniques used by attackers to avoid detection using morse code in the phishing campaign.Microsoft also revealed the workings of...

Murata Manufacturing suffers data breach of employees and customer

Japanese electronic components manufacturer Murata has released an apology Notice for the data breach of thousands of files in June that contained bank account...

Everything about Signalling System 7(SS7)

Signaling System 7 (SS7) is an international telecommunication protocol standard that controls and regulates the network elements in a public switched telephone network (PSTN)....

Zimbra flaw lets attackers access the mail servers

Researchers discovered a flaw in the open-source Zimbra code. As a result, an attacker would gain unrestricted access to all sent and received emails...

More Articles Like This