Bose Corporation Revealed that a Data Breach Hit the Company’s Systems in Early March.
Last updated on May 25, 2021
A data breach notification letter was filed with New Hampshire’s Office of the Attorney General by Bose Corporation in which was stated that the company “experienced a sophisticated cyber-incident that resulted in the deployment of malware/ransomware across” its “environment.”
Bose is a privately-held consumer electronics company specialized in the manufacturing of audio equipment for the entertainment, aviation, and automotive industries.
Bose hired external security experts to restore impacted systems after the attack, but it also hired forensic experts in order to properly determine if any of its data was accessed or exfiltrated by the attackers.
The Bose representatives said they will not make any kind of ransom payment, as they seemingly managed to recover and secure the systems in a quick manner, by using the support of third-party cybersecurity experts.
It was discovered during the investigation that data belonging to a very small number of individuals were impacted.
There is no ongoing disruption to our business, and we are focused on providing our customers with the great products and experiences they have come to expect from Bose.
It looks like while investigating the ransomware’s attack impact on its network, Bose discovered the fact that some of its employees’ personal information was accessed.
Based on our investigation and forensic analysis, Bose determined, on April 29, 2021, that the perpetrator of the cyber-attack potentially accessed a small number of internal spreadsheets with administrative information maintained by our Human Resources department.
These files contained certain information pertaining to employees and former employees of Bose.
Dora is a digital marketing specialist within Heimdal™ Security. She is a content creator at heart - always curious about technology and passionate about finding out everything there is to know about cybersecurity.