Sophos warns customers it was hit by data breach

News
By
published

Data breach has exposed sensitive information of Sophos users

Data Breach
(Image credit: Shutterstock)

UK cybersecurity firm Sophos has disclosed that it has become the victim of a data breach. A small number of customers received an email earlier this week informing them that their data had been exposed after unauthorized personnel used a misconfigured tool to gain access to sensitive information.

"On November 24, 2020, Sophos was advised of an access permission issue in a tool used to store information on customers who have contacted Sophos Support,” the email read. "As a result, some data from a small subset of Sophos customers was exposed. We quickly fixed the issue."

Currently, it remains unclear how the breach was discovered, while the number of customers affected has also not been disclosed. it has been revealed, however, that customer names, email addresses, and telephone numbers were among the data exposed by the breach.

Not the first time

Fortunately, Sophos acted quickly to put a stop to the data exposure and the information is no longer at risk. Additional measures have also been put in place to prevent permission issues from causing similar incidents in the future. Nevertheless, it would be understandable if some Sophos customers remained unconvinced. Earlier this year, the firm also disclosed that its XG Firewall was vulnerable to a zero-day SQL injection vulnerability.

Although it may be more embarrassing when an incident like this occurs at an organization that stakes its reputation on cybersecurity, it happens with surprising regularity. Aside from the Sophos breach, Avast, Trend Micro, and a number of other security firms have recently become victims of cyberattacks.

While the Sophos incident was relatively minor, affected customers should remain extra vigilant against phishing attacks, as cyberattackers may attempt to leverage ill-gotten data in follow-up exploits.

Via Bleeping Computer

Barclay Ballard
Barclay Ballard

Barclay has been writing about technology for a decade, starting out as a freelancer with ITProPortal covering everything from London’s start-up scene to comparisons of the best cloud storage services.  After that, he spent some time as the managing editor of an online outlet focusing on cloud computing, furthering his interest in virtualization, Big Data, and the Internet of Things. 

Latest in Security
healthcare
Software bug meant NHS information was potentially “vulnerable to hackers”
A hacker wearing a hoodie sitting at a computer, his face hidden.
Experts warn this critical PHP vulnerability could be set to become a global problem
botnet
YouTubers targeted by blackmail campaign to promote malware on their channels
A close-up of a phone screen showing the Telegram, Signal and WhatsApp apps
Agentic AI has “profound” issues with security and privacy, Signal President says
botnet
Another top security camera maker is seeing devices hijacked into botnet
Bluetooth
Top Bluetooth chip security flaw could put a billion devices at risk worldwide
Latest in News
Apple's Craig Federighi demonstrates the iPhone Mirroring feature of macOS Sequoia at the Worldwide Developers Conference (WWDC) 2024.
Report: iOS 19 and macOS 16 could mark their biggest design overhaul in years – and we have one request
Google Gemini Calendar
Gemini is coming to Google Calendar, here’s how it will work and how to try it now
Lego Mario Kart – Mario & Standard Kart set on a shelf.
Lego just celebrated Mario Day in the best way possible, with an incredible Mario Kart set that's up for preorder now
TCL QM7K TV on orange background
TCL’s big, bright new mid-range mini-LED TVs have built-in Bang & Olufsen sound
Apple iPhone 16e
Which affordable phone wins the mid-range race: the iPhone 16e, Nothing 3a, or Samsung Galaxy A56? Our latest podcast tells all
An image of a Jackbox Games Party Pack
Jackbox games is coming to smart TVs in mid-2025, and I can’t wait to be reunited with one of my favorite party video games
More about security
botnet

YouTubers targeted by blackmail campaign to promote malware on their channels
A hacker wearing a hoodie sitting at a computer, his face hidden.

Experts warn this critical PHP vulnerability could be set to become a global problem
Vodafone logo outside a store in Sydney

Vodafone employees could lose bonuses if they’re not in office 8 days per month
See more latest
Most Popular
Vodafone logo outside a store in Sydney
Vodafone employees could lose bonuses if they’re not in office 8 days per month
An image of a Jackbox Games Party Pack
Jackbox games is coming to smart TVs in mid-2025, and I can’t wait to be reunited with one of my favorite party video games
Google Gemini Calendar
Gemini is coming to Google Calendar, here’s how it will work and how to try it now
Ryzen AI Max+ 395
Race to launch most powerful AI mini PC ever heats up as GMKTec confirms Ryzen AI Max+ 395 product for May 2025
Apple iPhone 16e
Which affordable phone wins the mid-range race: the iPhone 16e, Nothing 3a, or Samsung Galaxy A56? Our latest podcast tells all
Apple's Craig Federighi demonstrates the iPhone Mirroring feature of macOS Sequoia at the Worldwide Developers Conference (WWDC) 2024.
Report: iOS 19 and macOS 16 could mark their biggest design overhaul in years – and we have one request
Whirlwind I Computer
Happy birthday, Director! The first operating system in the world turns 70 today
Lego Mario Kart – Mario & Standard Kart set on a shelf.
Lego just celebrated Mario Day in the best way possible, with an incredible Mario Kart set that's up for preorder now
Tesla Model 3
Tesla's EV sales are plummeting – as used Model Y and Model 3 prices crash to bargain levels
TCL QM7K TV on orange background
TCL’s big, bright new mid-range mini-LED TVs have built-in Bang & Olufsen sound