Cognizant has confirmed that in a recent ransomware attack, many data including personal information like tax information, passport or driving license, corporate credit card details, etc have been possibly leaked.
All the data were stolen by attackers a couple of months ago in April via Maze Ransomware attack. The IP Addresses used in the attacks were identified as the same used by the Maze Ransomeware team in the past.
For those who were affected in the recent ransomware act, Cognizant is providing one year of free ID theft and dark web monitoring.
Cognizant Maze Ransomware Attack
Cognizant started emailing it’s clients about the ransomware attack on their system from the 17th of April and asked them to disconnect their system so things won’t spread.
It included IP addresses used by Maze Ransomware and hashes for the kepstl32.dll, memes.tmp, and maze.dll files.
As per the data breach notification letter provided by Cognizant, Maze Ransomewareattack was active on its servers from April 9 and April 11th.
Here are the details of personal information of users that might have possibly stolen in the act;
- Social Security number
- Tax identification number
- Financial account information
- Driver’s license information
- Passport information
- Corporate credit cards (employees)
Cognizant said, “We have determined that the personal information involved in this incident included your name and one or more of: your Social Security number and/or other tax identification number, financial account information, driver’s license information, and/or passport information,” the Cognizant customer data breach notification stated.” and further added “The majority of the personal information that was impacted was information relating to our corporate credit cards. Out of an abundance of caution, we are giving notice to all associates who have an active corporate credit card. All associates who have an active corporate credit card will be offered credit and identity theft monitoring services from ID Experts.”