Clorox has filed a lawsuit against Cognizant, accusing the IT company of gross negligence that enabled a major cyberattack in August 2023 through social engineering. The incident highlights vulnerabilities in identity management and the importance of proper employee verification in cybersecurity defenses. #ScatteredSpider #CredentialReset
Keypoints
- Cognizant is sued by Clorox for failing to properly verify identity during password resets.
- The cyberattack was carried out by hackers associated with Scattered Spider using social engineering tactics.
- The breach resulted in widespread network paralysis, manufacturing shutdowns, and financial losses for Clorox.
- Cognizantβs inadequate response to the incident worsened the extent of damage caused.
- The lawsuit seeks $49 million in damages with a total claim of $380 million due to business disruption.