Home SECURITY Hackers stole the personal data of Oreo employees

Hackers stole the personal data of Oreo employees

Hackers stole the personal data of Oreo employees


Hackers stole the personal data of Oreo employees

Attackers hacked into the networks of a law firm that stored the data of Mondelez employees.

Mondelez International, maker of Oreo and Ritz biscuits, reported to your employees about the theft of their personal data. The data was stolen from the network of the law firm Bryan Cave Leighton Paisner LLP (BCLP), which provided services to Mondelez.

Mondelez’s own IT system was not affected – the attackers gained access to information stored by the law firm. Total from theft 51,110 people were affected – current and former employees of Mondelez.

Mondelez was one of the major international companies affected by the NotPetya cyberattack, and recently settled her claim against Zurich American Insurance Company, which refused to cover Mondelez’s more than $100 million in remediation costs for the attack.

Cybercriminals gained access to the following information about former and current employees:

  • social security numbers (SSN);
  • names and surnames;
  • addresses;
  • dates of birth;
  • Family status;
  • floor;
  • employee identification number;
  • information about Mondelez pension insurance.

A Mondelez spokesman said the company is not aware of any misuse of the stolen information. The company noted that information about accounts or credit cards was not affected during the incident. The company did not elaborate on how the attackers infiltrated the law firm’s network, how much data they stole, or whether they demanded a ransom. Mondelez offers free credit monitoring services for affected employees for 24 months.

Law firm BCLP first detected unauthorized access to its systems on February 27 and determined that the breach began on February 23 and continued until March 1. Bryan Cave later reported the IT security breach to Mondelez on March 24, after it determined that information about the confectionery giant’s employees had been stolen. On May 22, Mondelez already had enough information to determine who was affected in the incident and send notifications to them. The cyberattack is currently under investigation.


Source link



Please enter your comment!
Please enter your name here