Latest news with #WKKelloggCo.
Forbes
08-04-2025
- Business
- Forbes
Clop Ransomware Hack Of WK Kellogg Shows Growing Threat To Your Data
RANSOMWARE digital text, word, data security threat. Ransomware concept, banner. 3D render Today, personal information flows through countless digital systems, and a single vulnerability can expose the data of thousands—or even millions—of individuals. That is exactly what is happening now with a ransomware group called Clop, which is behind one of the most aggressive cybercrime waves in recent memory. Clop has been exploiting vulnerabilities in Cleo, a popular file transfer software used by over 4,000 organizations worldwide, including its latest victim, WK Kellogg Co.—the American food giant behind brands like Froot Loops, Corn Flakes, and Frosted Flakes. In a recent notification, WK Kellogg confirmed that attackers gained unauthorized access to servers used to transfer sensitive employee files. Among the data stolen were names and Social Security numbers—details that can be used for identity theft, fraud, and more. This breach is not an isolated incident. Clop has published a list of over 66 affected companies on its dark web extortion site, threatening to leak stolen data unless ransom demands are met. The leaked information often includes personal customer or employee data, putting everyday people at risk—whether or not they have ever heard of Cleo or Clop. The Clop group has a history of targeting file transfer tools; in 2023, they exploited a zero-day vulnerability in the MOVEit Transfer software, impacting over 300 organizations and compromising the personal data of approximately 93.3 million individuals. Similarly, in 2021, Clop exploited vulnerabilities in Accellion's File Transfer Appliance, leading to data breaches at multiple organizations, including the Reserve Bank of New Zealand and the University of California system. This type of ransomware does not rely on victims clicking malicious emails or attachments. Instead, attackers actively search for and exploit weaknesses in trusted enterprise software to gain access to sensitive data. It is easy to assume that large-scale cyberattacks only affect corporations, but the truth is the consequences often trickle down to individuals. When ransomware groups like Clop breach major companies, they do not just steal internal documents—they often walk away with sensitive personal data belonging to employees, vendors, and customers. This information can include names, addresses, phone numbers, email addresses, and, in many cases, Social Security numbers or other government-issued IDs. Once stolen, this data becomes a tool for cybercriminals to commit identity theft, financial fraud, and phishing scams. Your SSN, for example, can be used to open new credit cards, take out loans in your name, or file fraudulent tax returns—often without you realizing it until the damage is done. What makes these breaches even more dangerous for home users is that the fallout does not always happen right away. Hackers often sit on the stolen data for months before leaking or selling it on the dark web. By the time your information is being misused, the company may have long since issued its public breach notification, and you might never connect the fraud to the original incident. Even if you have never heard of the company that was breached, your personal data could still be involved if your employer, healthcare provider, or service vendor uses the compromised platform or software. While you cannot stop ransomware attacks targeting large companies, there is a lot you can do to protect yourself from the fallout. Here are practical steps every home user should take: Use tools like to find out if your email or phone number has appeared in known data breaches. If a company you do business with has been breached, monitor your email or physical mail for official notices—especially from banks, healthcare providers, or your employer. If a breach involves personal information like your Social Security number, enroll in free identity protection services if offered. Companies like WK Kellogg often partner with providers like Kroll to help affected individuals. Also, consider placing a fraud alert or even a security freeze with the three major credit bureaus: Equifax, Experian, and TransUnion. After a breach, scammers may impersonate the affected company to trick you into clicking malicious links. Always verify suspicious messages by visiting the company's official website or contacting their customer support directly—never trust links in unsolicited emails or texts. Change your passwords for any accounts linked to the breach. Use a password manager to create strong, unique passwords for every site. Always enable MFA where available for added protection. Cybercriminals exploit outdated software. Regularly update your devices, browsers, and apps to fix security holes.
Washington Post
05-04-2025
- Business
- Washington Post
Texas AG says he's investigating Kellogg's over ‘healthy' cereal claims
Texas Attorney General Ken Paxton (R) said Saturday his office is investigating WK Kellogg Co. for potentially violating consumer protection laws, launching a probe over the artificial food dyes in cereals that have rankled the Trump administration's 'Make America Healthy Again' faction. In a statement Saturday, Paxton's office said the company — known for cereals such as Froot Loops and Apple Jacks — advertises its products as healthy despite containing blue, red, yellow, green and orange artificial food colorings. Paxton's office alleged that those additives have been linked to obesity, autoimmune disease, endocrine-related health problems and cancer.
Boston Globe
27-03-2025
- Health
- Boston Globe
States move to ban or restrict use of synthetic dyes used in candies and cereal
Get Starting Point A guide through the most important stories of the morning, delivered Monday through Friday. Enter Email Sign Up In signing the bill, Republican Gov. Patrick Morrisey referenced Kennedy's slogan in saying, 'There's no better place to lead the Make America Healthy Again mission.' Advertisement The prohibition on certain preservatives and red, blue, green and yellow dyes takes effect for school food in August, and across the state in 2028. It follows narrower bills approved in California last year and Virginia last week that would ban six artificial dyes from being served in public schools beginning in 2027. Why do lawmakers want to see the dyes die? Thirty-six color additives are approved by the Federal Drug Administration for use in food and drinks in the U.S. Nine petroleum-based chemical dyes, including Red 3, have been allowed in U.S. food. Public health advocates have been lobbying for state and federal action for years, pointing to research that links food dyes and other chemical additives to health risks, including exacerbating symptoms of attention-deficit/hyperactivity disorder in some children and animal research linking certain additives to cancers. The European Union and some countries, including Australia and Japan, have banned or restricted the use of certain food dyes because of potential health risks. Advertisement In October, dozens of protesters outside the Michigan headquarters of WK Kellogg Co. demanded that the company remove artificial dyes from cereals such as Apple Jacks and Froot Loops. Kellogg announced that it would remove artificial colors and ingredients from its U.S. products by 2018, but never did so, despite making the change in other countries, such as Canada, where Froot Loops are colored with concentrated carrot juice, watermelon juice and blueberry juice. The U.S. Food and Drug Administration banned Red 3 from the nation's food supply in January, setting a 2027 deadline for manufacturers to eliminate it from their products. Makers of ingested drugs like cough syrups have until January 2028. Food industry warns of cost increases The National Confectioners Association, a trade group for chocolate, candy, gum and mints sellers, said the new regulations will make food more expensive, less accessible and lead to less variety on grocery store shelves. It said states such as West Virginia, where 1 in 4 children live in poverty and many neighborhoods are 'food deserts' with limited access to affordable, nutritious food, will be disproportionately impacted. Charles Leftwich, vice president of food safety and quality assurance for Sysco Corp., the world's largest food service distributor, said food safety policies should be supported by science and 'be consistently applied across all geographies.' 'We shouldn't have a fragmented approach when it comes to food safety, because it breeds a lack of trust and confidence with within consumers,' Leftwich said in an interview with The Associated Press. Changes underway School districts in West Virginia have begun phasing out breakfast cereals, strawberry milk or other products in anticipation of the new law's August deadline. Chris Derico, who runs Harrison County's school nutrition program, expects the new regulation to increase costs but said he's not 'in panic mode about it' because none of the products containing the artificial dyes are used in main dishes served to students. Advertisement Travis Austin, who leads food service in the Cabell County Schools system, called the policy 'a step in the right direction' and said it will be up to manufacturers to rework their formulas to remain competitive. 'It's all about money,' he said. 'If Froot Loops and Lucky Charms aren't going to change their formulations, then we're not going to buy them. We'll buy ones that do.' Lawmakers in West Virginia, which leads the nation in chronic diseases such as obesity, noted that the dyes are often found in sugary foods. When the bill passed the state Senate, sponsor Jason Barrett said West Virginia was the first state to approve such a sweeping law but won't be the last. He cited a bill advancing in Oklahoma that would ban 21 synthetic food dyes and additives. He said companies prey on low-income consumers and children. 'With passage of this bill, we are saying to big food corporations that the health of our people comes first,' he said.
