Summary: CenterPoint Energy is investigating reports of stolen customer data linked to a cybercriminal forum, stemming from a breach that occurred in 2023 involving a third-party vendor. Researchers discovered that the exposed data likely originated from CLEAResult, an energy consulting firm managing programs for CenterPoint and using the compromised MOVEit software. Cybersecurity experts warn this incident is part of a larger trend of supply chain vulnerabilities affecting numerous organizations and millions of individuals.
Affected: CenterPoint Energy
Keypoints :
- Confirmed investigation into stolen customer data after it appeared on a cybercriminal forum.
- Data likely sourced from third-party vendor CLEAResult, which utilized vulnerable MOVEit software.
- Two-thirds of the MOVEit attack records belong to nearly 96 million individuals nationwide, impacting 2,773 organizations.
Source: https://therecord.media/texas-utility-firm-investigating-potential-data-leak-moveit-breach