Kellogg reveals data breach, but it's lacking any real crunch
An unknown number of parties were affected

- Cereal giant KW Kellogg has suffered a data breach
- Fortunately, so far, only four people seem to be affected
- This could be connected to recent Cleo File Transfer breaches
Cereal giant WK Kellogg was hit with a data breach early in 2025, which has affected an unknown number of people.
CyberNews reports breach notifications were sent to Attorney General’s offices in Maine and New Hampshire, but these claim only four people were affected between the two states.
The servers affected by the breach were used to transfer employee records to WK Kellogg’s HR service vendors, meaning it’s likely some data exposed includes personally identifiable information (PII). This could leave those affected at risk of identity theft and fraud, so WK Kellogg is rightly offering a year of credit monitoring and identity theft protection services to those affected in the breach.
Monitor your credit score with TransUnion starting at $29.95/month
TransUnion is a credit monitoring service that helps you stay on top of your financial health. With real-time alerts, credit score tracking, and identity theft protection, it ensures you never miss important changes. You'll benefit from a customizable online interface with clear insights into your credit profile. Businesses also benefit from TransUnion’s advanced risk assessment tools.
Preferred partner (What does this mean?)
A familiar story
The breach reportedly originated through a third party vendor, file transfer service Cleo, which was also used in a suspected C10p ransomware attack against Sam’s Club in late March of 2025.
This incident saw attackers allegedly intercept the personal data of around 100,000 employees, and was part of a much wider campaign by the C10p group in which at least two dozen organizations were compromised through the file service vulnerability.
It’s not yet clear if the WK Kellogg breach is a ransomware attack or if the same group behind the incident - and the company did not immediately respond with any comment.
WK Kellogg is far from alone though, as third-party data breaches have become a major security concern, with almost all companies in Europe (98%) experiencing a third-party breach in the last year, compared to just 18% of organizations suffering a direct breach.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
In the age of globalization, it’s almost impossible to run a business without collaborating with third-parties, so knowing your vendor and being confident in managing the risks they come with is key to keeping your information secure.
You might also like
- Take a look at our picks for the best malware removal software around
- Check out our choice for best antivirus software
- One of the most powerful ransomware hacks around has been cracked using some serious GPU power
Ellen has been writing for almost four years, with a focus on post-COVID policy whilst studying for BA Politics and International Relations at the University of Cardiff, followed by an MA in Political Communication. Before joining TechRadar Pro as a Junior Writer, she worked for Future Publishing’s MVC content team, working with merchants and retailers to upload content.
You must confirm your public display name before commenting
Please logout and then login again, you will then be prompted to enter your display name.