Sophos reports data security breach, impacting customers

Sophos, a leading cyber security company, has notified some customers via email about a data security breach this week, saying a small subset of customers were affected, ZDNet reported.
Sophos Intercept XThe data exposure included details such as customers’ first and last names, email addresses and phone numbers wherever provided.

Sophos on November 24, 2020 was advised of an access permission issue in a tool used to store information on customers who have contacted Sophos Support, the company said in the email.

This is the second time this year when Sophos was hit by threat actors.

In April, the UK-headquartered cyber security firm published an emergency security update to patch a zero-day vulnerability in its XG enterprise product being abused by hackers.

This time, Sophos said it came to know about the data exposure after a security researcher alerted the company.

Sophos said it is implementing additional measures to ensure access permission settings are continuously secure.

Research firm Gartner has recognized Sophos as Leaders in their Magic Quadrant for Endpoint Protection Platforms for eleventh report in a row. Sophos Endpoint Protection covers end users.

Sophos is the Leader in the Magic Quadrant for Unified Threat Management for six years running. Sophos UTM offers the flexibility to choose a hardware, software, or virtual appliance.