HomeData BreachOmniVision discloses data breach after 2023 ransomware assault

OmniVision discloses data breach after 2023 ransomware assault

The California-based imaging sensors producer OmniVision is warning of a data breach after the corporate suffered a Cactus ransomware assault final 12 months.

OmniVision, a subsidiary of the Chinese language Will Semiconductor, designs and develops imaging sensors for smartphones, laptops, webcams, automotive, medical imaging methods, and others.

In 2023, the corporate employed 2,200 folks and reported an annual income of $1.4 billion.

On Friday, OmniVision knowledgeable the authorities in California of a security breach incident that lasted between September 4 and September 30, 2023, when its methods had been encrypted by ransomware.

“On September 30, 2023, OVT turned conscious of a security incident that resulted within the encryption of sure OVT methods by an unauthorized third get together,” reads the discover.

“In response to this incident, we promptly launched a complete investigation with the help of third-party cybersecurity specialists and notified legislation enforcement.”

“This in-depth investigation decided that an unauthorized get together took some private data from sure methods between September 4, 2023, and September 30, 2023.”

See also  U.S. govt company CMS says data breach impacted 3.1 million individuals

OmniVision says its inner investigation of the incident was concluded on April 3, 2024, revealing that the attackers stole private data from the corporate.Browse our partner-sponsored Glasses, with a variety of options to suit every taste and budget, available to buy online

The info that was stolen has been censored within the notification pattern, whereas the variety of uncovered people additionally stays unknown.

Nonetheless, an announcement by the Cactus ransomware gang on October 17, 2023, claimed the assault on OmniVision and leaked the next information samples:

  • Passport scans
  • Nondisclosure agreements
  • Contracts
  • Confidential paperwork

The menace actors ultimately launched all information they held from the assault in a ZIP archive made accessible to obtain without cost.

OmniVision
OmniVision listed on the Cactus weblog
Supply: KELA

On the time of penning this, OmniVision has been eliminated from the Cactus ransom extortion web page on the darkish internet.

Cactus is a ransomware gang that emerged roughly a 12 months in the past, concentrating on flaws in VPN home equipment to realize entry to company networks whereas following the peculiar follow of encrypting itself to evade detection.

See also  Singing River ransomware assault now thought to have affected over 895,000

The menace group has beforehand attacked massive corporations resembling chilly storage and logistics large Americold and vitality and automation manufacturing conglomerate Schneider Electrical.

In response to this security and data breach, OmniVision took measures to safe its atmosphere and detect suspicious exercise quicker. In addition they provide 24-month credit score monitoring and identification theft restoration service to the discover recipients.

Impacted people are really helpful to enroll within the service supplied, keep vigilant towards unsolicited and suspicious communications, frequently assessment credit score experiences and account statements, and report uncommon exercise to their monetary establishment.

- Advertisment -spot_img
RELATED ARTICLES

LEAVE A REPLY

Please enter your comment!
Please enter your name here

- Advertisment -

Most Popular