Related News

Archaeologists have deciphered a 1,700-year-old inscription at an ancient Roman temple in Turkey that offers rare written evidence of the shift from Mithraism to Christianity during the Roman period.The inscription

Photographic view during the Static Test of SOLVE-ST01 NEW DELHI: The Indian Space Research Organisation (ISRO) has successfully conducted the first ground test of the solid motor for its Sub-Orbital

Astronomers have detected light from a tiny but powerful galaxy that existed when the universe was still emerging from a vast fog of hydrogen gas. The discovery, made using the

Photo credit: PIB NEW DELHI: Indian Railways has approved running India’s first indigenous hydrogen fuel-cell-based train on the Jind-Sonipat section of the Northern Railway, entering the elite club of nations

The National Science Foundation on Thursday reversed a decision to dismantle a sprawling ocean monitoring network after vigorous objections from Democratic lawmakers and scientists who rely on it to track

Isro chairman V Narayanan (Right) NEW DELHI: Isro chairman V Narayanan has revealed that the space agency is collaborating with the Department of Atomic Energy (DAE) to develop an advanced

Trending News

In today’s digital age, the opportunity to make money online without any initial investment is more accessible than ever before. Whether you’re a student looking to earn some pocket money,

In today’s digital world, make money online has become a dream many want to turn into reality. Whether you’re looking for a side hustle or aiming to build a full-time

JSW Cement, the building materials arm of Sajjan Jindal-led JSW Group, has reduced the size of its upcoming initial public offering (IPO) to Rs 3,600 crore and will open the

The agricultural Gross Value Added (GVA) growth is expected to moderate to 4.5% in the first quarter of FY26, down from 5.4% in the preceding quarter, according to a report

Foreign portfolio investors (FPIs) turned net sellers in the Indian equity market in July, pulling out Rs 17,741 crore amid rising global trade tensions. According to data from NSDL, this

Avenue Capital Group-backed Asset Reconstruction Company (India) Ltd (ARCIL) has filed its draft red herring prospectus (DRHP) with markets regulator Sebi on Friday to raise funds through an initial public

US bleach co Clorox sues Cognizant over cyberattack

Word Count: 692 | Estimated Reading Time: 4 minutes


US bleach co Clorox sues Cognizant over cyberattack

BENGALURU: US household goods manufacturer Clorox sued Cognizant for $380 million, alleging that the latter’s service desk granted access to cybercriminals to Clorox’s network by providing login credentials without properly verifying the requester’s identity or following Clorox’s authentication processes.“The resulting cyberattack was debilitating. It paralysed Clorox’s corporate network and crippled business operations. And to make matters worse, when Clorox called on Cognizant to provide incident response and disaster recovery support services, Cognizant botched its response and compounded the damage it already caused,” Clorox said in its complaint.The complaint alleged that the cyberattack caused Clorox approximately $380 million in damages, including over $49 million in remedial costs alone to fix the damage caused by Cognizant’s entirely preventable errors, and hundreds of millions of dollars in business interruption losses because the cyberattack impeded Clorox’s ability to ship orders and keep its products on the shelves of retailers.Clorox entered into an agreement with Cognizant in 2013 that included service desk support and identity management. The complaint said that Cognizant operated the service desk for Clorox and provided IT support for Clorox employees, including employee credential recovery when needed.The cybercriminal called the Cognizant service desk a second time, again masquerading as Clorox employee 1, it said. On August 11, 2023, the cybercriminal initially contacted the service desk to request a reset of employee 1’s password for Okta, an identity management tool Clorox used to verify network access. The agent replied by asking the cybercriminal to connect to Clorox’s virtual private network (VPN). The cybercriminal then claimed he could not access the VPN without a password. The complaint said without any additional questions or identity checks, the agent reset Clorox’s password, directly violating Clorox’s credential support protocols.When TOI reached out to Cognizant, its spokesperson said, “It is shocking that a corporation the size of Clorox had such an inept internal cybersecurity system to mitigate this attack. Clorox has tried to blame us for these failures, but the reality is that Clorox hired Cognizant for a narrow scope of help desk services which Cognizant reasonably performed. Cognizant did not manage cybersecurity for Clorox.”





Source link