Logitech recently reported a cybersecurity incident involving a zero-day vulnerability, affecting its internal IT systems. Hackers exploited a bug in third-party software, leading to the unauthorized copying of certain data. The compromised information likely includes limited employee, consumer, customer, and supplier details, but not sensitive personal information like national ID numbers or credit card data. Logitech confirmed that the breach did not affect its products or operations and will not financially impact the company, as costs will be covered by cyber insurance. The disclosure follows claims by the Clop cybercriminal group, which alleged it accessed Logitech’s data through a zero-day vulnerability in Oracle’s E-Business Suite. While Logitech did not confirm Clop’s involvement, security reports suggest multiple vulnerabilities in the Oracle tool were exploited. The Clop group has been linked to extensive data theft incidents, targeting various organizations and earning significant sums by exploiting vulnerabilities in popular file transfer tools.
Did Logitech Suffer a Data Breach Due to Clop’s Claims?
