Techly NewsGet the app

Get the latest tech news

Lawsuit says Clorox hackers got passwords simply by asking


Clorox was one of several major companies hit in August 2023 by the hacking group dubbed Scattered Spider, which specializes in tricking IT help desks into handing over credentials.

WASHINGTON — Bleach maker Clorox said Tuesday that it has sued information technology provider Cognizant over a devastating 2023 cyberattack, alleging that the hackers pulled off the intrusion simply by asking the tech company’s staff for employees’ passwords. Clorox was one of several major companies hit in August 2023 by the hacking group dubbed Scattered Spider, which specializes in tricking IT help desks into handing over credentials and then using that access to lock them up for ransom. The group is often described as unusually sophisticated and persistent, but in a case filed in California state court on Tuesday, Clorox said one of Scattered Spider’s hackers was able to repeatedly steal employees’ passwords simply by asking for them.

Get the Android app

Or read this on r/technology

Read more on:

Photo of lawsuit

lawsuit

Photo of clorox

clorox

Photo of passwords

passwords

Related news:

News photo

After $380 Million Hack, Clorox Sues Its 'Service Desk' Vendor For Simply Giving Out Passwords

News photo

Hackers fooled Cognizant help desk, says Clorox in $380M cyberattack lawsuit

News photo

$380M lawsuit claims intruder got Clorox's passwords from Cognizant simply by asking

« I drank every cocktail
Inside the Silicon Valley push to breed super-babies »