Cognizant says: Shocking that ..., as America's largest Bleach maker Clorox sues the company, claims Cognizant employees gave password on phone
Cognizant
is facing lawsuit from America's largest Bleach maker Clorox. Bleach maker
Clorox
sued information technology provider Cognizant over a devastating 2023 cyberattack, alleging the hackers gained access by asking the tech company's staff for its employees' passwords. Clorox was one of several major companies hit in August 2023 by the hacking group dubbed Scattered Spider. Clorox provided news agency Reuters with a receipt for the lawsuit from the court.
The 2023 hack at Clorox caused $380 million in damages, the suit said, about $50 million of which was tied to remedial costs and the rest attributable to Clorox's inability to ship products to retailers in the wake of the hack.
Clorox lawsuit shares transcript of alleged conversation between Cognizant employees and hackers
Clorox, in its lawsuit filed Tuesday in the Superior Court of California, County of Alameda, said that it has trusted Cognizant for over a decade to 'play critical roles in Clorox's cyber environment.' Clorox alleged that Cognizant, despite being provided 'straight-forward procedures' to properly authenticate employees who called its Cognizant-operated service desk to reset their credentials, failed to do so, resulting in a 'catastrophic cyberattack' on the company.
by Taboola
by Taboola
Sponsored Links
Sponsored Links
Promoted Links
Promoted Links
You May Like
Treatment That Might Help You Against Knee Pain
Knee pain | search ads
Find Now
Undo
'Cognizant was not duped by any elaborate ploy or sophisticated hacking techniques. The cybercriminal just called the Cognizant Service Desk, asked for credentials to access Clorox's network, and Cognizant handed the credentials right over. Cognizant is on tape handing over the keys to Clorox's corporate network to the cybercriminal—no authentication questions asked,' Clorox alleges in the lawsuit.
Three partial transcripts included in the lawsuit allegedly show conversations between the hacker and Cognizant support staff in which the intruder asks to have passwords reset and the support staff complies without verifying who they are talking to, for example by quizzing them on their employee identification number or their manager's name.
"I don't have a password, so I can't connect," the hacker says in one call. The agent replies, "Oh, OK. OK. So let me provide the password to you OK?"
"Cognizant was not duped by any elaborate ploy or sophisticated hacking techniques," according to a copy of the lawsuit reviewed by Reuters. "The cybercriminal just called the Cognizant Service Desk, asked for credentials to access Clorox's network, and Cognizant handed the credentials right over."
Clorox further claimed that the clean-up was hampered by other failures by Cognizant's employees, including failure to de-activate certain accounts or properly restore data.
Cognizant says: We were not hired for security
Responding to the accusations and the lawsuit, Cognizant claimed, in an email statement to Reuters, that the company did not manage cybersecurity for Clorox and it was only hired for limited help desk services. "Clorox has tried to blame us for these failures, but the reality is that Clorox hired Cognizant for a narrow scope of help desk services which Cognizant reasonably performed," Cognizant said.
Jeff DeMarrais, Cognizant's senior vice president of global marketing and chief communications officer, told CRN that it was Clorox's own security practices that were lax. 'It is shocking that a corporation the size of Clorox had such had an inept internal cybersecurity system to mitigate this attack. Clorox has tried to blame us for these failures, but the reality is that Clorox hired Cognizant for a narrow scope of help desk services which Cognizant reasonably performed. Cognizant did not manage cybersecurity for Clorox,' DeMarrais wrote.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Hindustan Times
14 minutes ago
- Hindustan Times
Italian court frees city councillor arrested in Milan property probe
MILAN, - A Milan court freed a city councillor and two other local figures who had been placed under house arrest for alleged fast-tracking of planning permits, as part of investigations that have led to a construction freeze in Italy's financial capital. Italian court frees city councillor arrested in Milan property probe According to a closed-door ruling issued late on Thursday and reviewed by Reuters, an appeals court commuted the three arrests to one-year bans on professional activity and in dealing with government offices. Giancarlo Tancredi, a member of the Milan city council, resigned from his post after the prosecutor's office filed requests for his arrest on July 16. His lawyer did not reply to a request from Reuters for comment about the latest court decision. Tancredi and five others involved in the alleged scandal had been arrested on July 31. They all are still under investigation and deny any wrongdoing. The appeals court previously released on August 12 two other suspects in the investigation, a builder and an architect, without imposing any other restrictive measures. The court is expected on August 20 to examine the appeal of the sixth suspect, the head of real estate firm Coima, who is currently under house arrest. Coima, one of Italy's biggest developers, issued a statement "taking note" of the measure against its founder Manfredi Catella, and said that, in response, the powers of other board members had been expanded to ensure business continuity. The Milan property market began booming in 2015, when the Expo international exhibition helped to transform the city into a hot spot for developers from Italy and abroad. But complaints from local residents objecting to a sharp increase in multi-storey buildings triggered investigations into alleged abuses in the fast-tracking of building permits, stalling construction activity. This article was generated from an automated news agency feed without modifications to text.
&w=3840&q=100)
First Post
an hour ago
- First Post
Blackwater founder Erik Prince's hired guns to target Haiti's gangs amid growing chaos
Prince's new security firm, Vectus Global, which is already present in Haiti, will intensify its operations in the Caribbean nation to help authorities battle heavily armed criminal groups and win territories back from them US President Donald Trump's backer and private military contractor Blackwater's founder, Erik Prince, will lead a mission in Haiti to combat gang violence in the country. The mission will include combatants from the US, Europe and El Salvador who will be deployed to the violence-torn country soon. Prince's new security firm, Vectus Global, which is already present in Haiti, will intensify its operations in the Caribbean nation to help authorities battle heavily armed criminal groups and win territories back from them, according to a report by Reuters. STORY CONTINUES BELOW THIS AD Since February 2024, Haiti's capital has been largely isolated from the rest of the country after armed groups launched a coordinated offensive against the government, ousting the prime minister and seizing control of much of Port-au-Prince. According to the United Nations, over 1,500 people were killed between April and July, most of them in the capital. The majority of these deaths occurred during security force operations, with about a third resulting from drone strikes, which the government has recently begun using to target armed groups. Who is Erik Prince? Prince, a former US Navy Seal, founded the Blackwater military security firm in 1997. He sold the company in 2010 after Blackwater employees were convicted of unlawfully killing 14 unarmed civilians while escorting a US embassy convoy in Baghdad's Nisour Square. The men were pardoned by Trump during his first term in the White House. Since Trump's return to the White House, Prince has advised Ecuador on how to fight criminal gangs and struck a deal with the Democratic Republic of Congo to help secure and tax its mineral wealth. What will his company do in Haiti? A person familiar with the company's operations in Haiti told Reuters that Vectus would intensify its fight against the criminal gangs that control large swathes of Haiti in the coming weeks in coordination with the Haitian police, deploying several hundred fighters from the United States, Europe and El Salvador who are trained as snipers and specialists in intelligence and communications, as well as helicopters and boats. Vectus's force includes some French and Creole speakers, the person said. With inputs from Reuters
Mint
2 hours ago
- Mint
Singapore property tycoon linked to jailed minister fined S$30,000
SINGAPORE, Aug 15 (Reuters) - Property tycoon Ong Beng Seng was fined S$30,000 ($23,000) by a Singapore court on Friday as part of a landmark case that led to the jailing of former Transport Minister S. Iswaran last year. Ong, the 79-year-old founder of Hotel Properties Ltd ( and rights holder to the Singapore Grand Prix, was accused of giving Iswaran, who was an adviser to the Grand Prix's steering committee, high-value gifts including tickets to the Formula One race, English Premier League soccer matches, and West End musicals. Ong last week pleaded guilty to one charge of abetting the obstruction of justice after arranging to bill Iswaran for a flight ticket months after it had taken place. A second charge of abetting an offence was also taken into consideration by the court. The S$30,000 was the maximum fine the court could impose. Ong, who was given a fine in lieu of three months' jail, stepped down as managing director of HPL in April. The case has attracted widespread public interest in Singapore, a wealthy financial hub that pays ministers salaries of more than S$1 million that it says are needed to deter graft and prides itself on its reputation for clean governance. At last week's hearing, the prosecution and defence agreed that because Ong was in poor health with advanced cancer he could be granted judicial mercy, which meant the court could impose a more lenient than normal punishment. In a written judgment, District Judge Lee Lit Cheng wrote: "The critical question is not whether an offender may receive a lower standard of healthcare in prison, but whether imprisonment would create heightened risks to the offender's life. "I am satisfied that the circumstances in this case are exceptional and meet the high threshold for the grant of judicial mercy." Iswaran was sentenced to 12 months in prison last October, the first time a former cabinet member had been jailed in Singapore. He had faced a total of 35 charges, two of which were corruption-related but were amended to charges of receiving S$384,340 worth of gifts from Ong while a public servant. In February, Iswaran was granted house arrest for the remainder of his sentence. ($1 = 1.2831 Singapore dollars) (Reporting by Xinghui Kok; Editing by John Mair and Kate Mayberry)
