Proctor and Gamble is the Latest Company Hit by the GoAnywhere Data Incident
Table of Contents
- By Steven
- Mar 28, 2023
Proctor and Gamble is a massive production company that produces home goods under many different brands and sells them around the world. Major brands like Febreze, Olay, Pantene, Pampers, Gillette, Crest, Dawn, and so many others belong to the organization. Proctor and Gamble recently admitted that it also suffered from data losses linked to attacks on the GoAnywhere file transfer service.
How Did the Attack Occur?
GoAnywhere is a secure file transfer system dedicated to sending files around the internet safely. The service recently suffered from a security vulnerability that the Clop ransomware gang and other hackers took advantage of heavily. The gang reportedly gained access to secure information for more than 130 separate companies using the security vulnerability. According to Proctor and Gamble, the organization is one of the impacted companies.
What Information Was Viewed or Stolen?
The Proctor and Gamble data breach gave up some company data to the Clop ransomware gang, but no consumer information was stolen in the attack. The company did not have to come forward and admit to the data breach because no Social Security numbers or financial data were taken in the breach. The company cut off the use of Fortra's GoAnywhere service in February at the time when it realized the service was a security risk.
How Did Proctor and Gamble Admit to the Breach?
Proctor and Gamble put out a statement letting its customers know it suffered from a data breach. The statement assured everyone that no customer data was involved in the data breach and that the GoAnywhere file service has been discontinued within the company. The company is finished investigating the breach, and it didn't find any consumer information involved. If new information comes out about the breach, the company will send out letters notifying anyone involved that they are at risk. If you don't receive a letter, your information is likely safe from exposure.
What Will Become of the Stolen Information?
The Clop gang will likely try and sell off any Proctor and Gamble information it's obtained that might be useful to someone else. No personal data was taken from the company, so individuals aren't put at risk by the attack. The company itself may suffer some financial damage because of the breach, though, and the gang will leverage that data as much as possible to get money. Any emails and names obtained will be used in phishing attacks in an attempt to gather more useful data. Even harmless information will be leveraged to try and make it more valuable to the ransomware gang.
What Should Affected Parties Do in the Aftermath of the Breach?
There is nothing for Proctor and Gamble customers to do at this time in relation to the recent data breach. No personal or financial data was stolen in the breach, and that means individuals don't have to worry about being hurt by the breach. Anyone involved in a company that depends on Fortra's GoAnywhere file transfer service should take care to protect their data and monitor their credit and financial accounts. The file service is exposing a huge number of companies and their customers. Proctor and Gamble made it through the breach without significant data losses, but not all companies involved got off so easily.