Logitech, one of the world’s biggest PC accessories makers, recently confirmed that it was a victim of hacking. It says that a zero-day vulnerability was how the hacker got past its cybersecurity.
In a filing to the SEC, Logitech says that the hacker made off with 1.8TB of company data, but that none of the stolen data was sensitive. “The Company recently experienced a cybersecurity incident relating to the exfiltration of data. This incident has not impacted Logitech’s products, business operations or manufacturing.”
“While the investigation is ongoing, at this time Logitech believes that the unauthorised third party used a zero-day vulnerability in a third-party software platform and copied certain data from the internal IT system. The zero-day vulnerability was patched by Logitech following its release by the software platform vendor. The data likely included limited information about employees and consumers, and data relating to customers and suppliers. Logitech does not believe any sensitive personal information, such as national ID numbers or credit card information, was housed in the impacted IT system. Logitech has begun the process to notify government entities as required.”
The accessory brand believes that the data was stolen by the Clop extortion group, but doesn’t outright name the group in its SEC filing. It also says that it has since patched the zero-day vulnerability.
Clop has a history of extortion attacks, unsurprisingly, and includes airlines, colleges, and newspapers in its “portfolio”. According to BleepingComputer, the company was likely affected by an Oracle zero-day vulnerability.
(Source: Logitech, Tom’s Hardware, BleepingComputer)
