A massive data breach has exposed the personal information of hundreds of thousands of people

6 December 2024 2 minutes Author: Newsman

Chemonics International, one of USAID’s largest contractors, fell victim to a massive data breach. Criminals gained access to the company’s systems, which led to the disclosure of personal information of more than 263,000 people. The incident continued for more than half a year before it was discovered.

The international development company Chemonics International noticed “suspicious activity” in the system in 2023/12. The investigation then revealed that the unauthorized access began on 2023/5/30 and continued until 2024/1/9. The attackers have been operating freely in the company’s network for more than 6 months and have access to confidential data.

Although the leak was discovered at the end of 2023, the company spent almost 1 year analyzing the amount of data stolen and sending messages to victims only on 2024-10-31, when the electronic data discovery process was completed and the compromised data was identified.

Chemonics said it had sent out warning letters and set up a dedicated call center to help those affected. In addition, the company offers free personal protection for 2 years as compensation. When asked about the scope of the attack, Chemonics declined to provide additional information due to its sensitivity.

Chemonics International is one of USAID’s main contractors and works in more than 100 countries around the world, working on projects in the areas of food security, health care, climate change, education and private sector development. The company manages billion-dollar projects, including a $9.5 billion initiative to strengthen global healthcare supply chains.

A massive data leak from Chemonics International highlights the vulnerability of large organizations to cyberattacks.

Other related articles
Found an error?
If you find an error, take a screenshot and send it to the bot.