News

Trend Micro employee sold customers’ data to scammers

Trend Micro reported an unpleasant incident that occurred this summer: company’s employee was selling user data to scammers.

An insider sold 68,000 customers personal information to fraudsters (less than 1% of the company’s twelve million user base).

“We recently became aware of a security incident that resulted in the unauthorized disclosure of some personal data of an isolated number of customers of our consumer product. We immediately started investigating the situation and found that this was the result of a malicious insider threat. The suspect was a Trend Micro employee who improperly accessed the data with a clear criminal intent”, — confessed in Trend Micro.

It all started in August 2019: users are increasingly receiving suspicious phone calls from people who appear to be Trend Micro support staff.

It soon became clear that scammers are not only good at using social engineering, but they do have detailed customer information, that is, they call well prepared. After that, Trend Micro began an investigation of what was happening.

“If you have purchased our consumer product, you should know that Trend Micro will never call you unexpectedly. If a support call is to be made, it will be scheduled in advance. If you receive an unexpected phone call claiming to be from Trend Micro, hang up and report the incident to Trend Micro support using our official contact details”, — report in the company.

The investigation ended at the end of October and revealed that for the incident is responsible an insider – an unnamed Trend Micro employee who intentionally obtained unauthorized access to user data and then sold this information to yet unknown scammers.

Read also: Chrome and Firefox developers save users from intrusive messages

As a result, the criminals had at their disposal the names of customers, email addresses, numbers of applications submitted to the support service, and in some cases phone numbers. The aforementioned attacks mainly affected the English-speaking customers of the company.

Representatives of Trend Micro emphasize that the leak did not affect the payment data of users, and information about corporate and government customers of the company was not stolen.

An employee who has stolen and resold personal data has already been fired, and his account has been blocked. All information about the incident was transmitted to law enforcement officials.
User Review
0 (0 votes)
Comments Rating 0 (0 reviews)
James Brown

Technology news writer and part-time security researcher. Author of how-to articles related to Windows computer issue solving.

Recent Posts

Remove News-bpudepi.today pop-up ads (Virus Removal Guide)

News-bpudepi.today is a domain that tries to trick you into subscribing to its browser notifications…

23 hours ago

Remove Doguhtam.xyz pop-up ads (Virus Removal Guide)

Doguhtam.xyz is a site that tries to trick you into subscribing to its browser notifications…

23 hours ago

Remove News-xlixoti pop-up ads (Virus Removal Guide)

News-xlixoti.com is a site that tries to force you into subscribing to its browser notifications…

23 hours ago

Remove Ducesousightion pop-up ads (Virus Removal Guide)

Ducesousightion.com is a domain that tries to trick you into clik to its browser notifications…

23 hours ago

Remove News-xlabica.live pop-up ads (Virus Removal Guide)

News-xlabica.live is a domain that tries to trick you into clik to its browser notifications…

23 hours ago

Remove Mergechain.co.in pop-up ads (Virus Removal Guide)

Mergechain.co.in is a site that tries to trick you into subscribing to its browser notifications…

23 hours ago