WK Kellogg Co, a US-based food manufacturing company, has reported that company data was stolen during the 2024 data theft attacks against Cleo, a managed file transfer utility targeted by the Clop ransomware gang in late 2024.
Erich Kron, security awareness advocate at KnowBe4, commented:
“Zero day flaws, such as those that have been exploited by the Clop ransomware group, are extremely difficult to defend against. Because these stolen files are HR-related employee files, the information within them is liable to be very sensitive and could easily lead to identity theft for those affected.
“Victims of the data breach should ensure that they have locked their credit to avoid illicit accounts being opened in their names, and should be on the lookout for potential signs of identity theft.”
Another day. Another supply chain attack. That’s not good. Seeing as you’re only as secure as the companies you work with, it’s time to ask those companies some really hard questions to ensure that your company is as safe as possible.
Like this:
Like Loading...
Related
This entry was posted on April 7, 2025 at 3:50 pm and is filed under Commentary with tags Hacked. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
WK Kellogg Data Breach Linked to Clop
WK Kellogg Co, a US-based food manufacturing company, has reported that company data was stolen during the 2024 data theft attacks against Cleo, a managed file transfer utility targeted by the Clop ransomware gang in late 2024.
Erich Kron, security awareness advocate at KnowBe4, commented:
“Zero day flaws, such as those that have been exploited by the Clop ransomware group, are extremely difficult to defend against. Because these stolen files are HR-related employee files, the information within them is liable to be very sensitive and could easily lead to identity theft for those affected.
“Victims of the data breach should ensure that they have locked their credit to avoid illicit accounts being opened in their names, and should be on the lookout for potential signs of identity theft.”
Another day. Another supply chain attack. That’s not good. Seeing as you’re only as secure as the companies you work with, it’s time to ask those companies some really hard questions to ensure that your company is as safe as possible.
Share this:
Like this:
Related
This entry was posted on April 7, 2025 at 3:50 pm and is filed under Commentary with tags Hacked. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.