Hackers gained access to ex-employees data during ransomware attack on Bose
Bose was hit by a ransomware attack in early March, in which hackers gained access to the data of six former American employees. The company cannot rule out that this data has been stolen.
After the attack on US systems on March 7, Bose launched an internal investigation. This revealed that the attackers had access to the data of six former employees of the American branch of the company. This includes name, their social security numbers and ‘reimbursement details’. Bose says it has investigated with security experts and the FBI whether this data has been used on the dark web, there would be no evidence for this as yet.
The company says it has improved endpoint malware protection, monitoring and logging after the attack. The passwords and access keys of accounts have also changed. The affected ex-employees have been informed of the attack. The data of some current Bose employees has also been stolen; it is not clear how much it is. The company does not disclose whether a ransom has been paid. All Bose systems are now active again.