News

Trend Micro employee sold customers’ data to scammers

Photo of James Brown James BrownNovember 7, 2019
0 47 1 minute read

Trend Micro reported an unpleasant incident that occurred this summer: company’s employee was selling user data to scammers.

An insider sold 68,000 customers personal information to fraudsters (less than 1% of the company’s twelve million user base).

“We recently became aware of a security incident that resulted in the unauthorized disclosure of some personal data of an isolated number of customers of our consumer product. We immediately started investigating the situation and found that this was the result of a malicious insider threat. The suspect was a Trend Micro employee who improperly accessed the data with a clear criminal intent”, — confessed in Trend Micro.

It all started in August 2019: users are increasingly receiving suspicious phone calls from people who appear to be Trend Micro support staff.

It soon became clear that scammers are not only good at using social engineering, but they do have detailed customer information, that is, they call well prepared. After that, Trend Micro began an investigation of what was happening.

“If you have purchased our consumer product, you should know that Trend Micro will never call you unexpectedly. If a support call is to be made, it will be scheduled in advance. If you receive an unexpected phone call claiming to be from Trend Micro, hang up and report the incident to Trend Micro support using our official contact details”, — report in the company.

The investigation ended at the end of October and revealed that for the incident is responsible an insider – an unnamed Trend Micro employee who intentionally obtained unauthorized access to user data and then sold this information to yet unknown scammers.

Read also: Chrome and Firefox developers save users from intrusive messages

As a result, the criminals had at their disposal the names of customers, email addresses, numbers of applications submitted to the support service, and in some cases phone numbers. The aforementioned attacks mainly affected the English-speaking customers of the company.

Representatives of Trend Micro emphasize that the leak did not affect the payment data of users, and information about corporate and government customers of the company was not stolen.

An employee who has stolen and resold personal data has already been fired, and his account has been blocked. All information about the incident was transmitted to law enforcement officials.
Sending
User Review
0 (0 votes)
Comments Rating 0 (0 reviews)
Tags
Photo of James Brown James BrownNovember 7, 2019
0 47 1 minute read
Photo of James Brown

James Brown

Technology news writer and part-time security researcher. Author of how-to articles related to Windows computer issue solving.

Related Articles

UN and AI moratorium

UN calls for a moratorium on the use of AI that threatens human rights

September 17, 2021
Cloud protection technologies do not work

66% of information security specialists believe that cloud protection technologies do not work

July 31, 2019
Facebook is fined

Facebook was fined $ 5 billion for violation of confidentiality laws

July 15, 2019
Hackers attacked Israeli sites

Hackers attacked and defaced thousands of Israeli sites

May 22, 2020

Leave a Reply

Your email address will not be published. Required fields are marked *

Sending

This site uses Akismet to reduce spam. Learn how your comment data is processed.

© Copyright 2024, All Rights Reserved  | Adware.Guru;
Back to top button