The Clorox Company is a multinational consumer goods company that specializes in the production and marketing of various household and professional cleaning, health, and personal care products.
The cleaning product giant announced it was the victim of a cybersecurity incident this week that forced it to take some systems offline.
“The Clorox Company has identified unauthorized activity on some of its Information Technology (IT) systems. After becoming aware of the activity, the Company began taking steps to stop and remediate the activity, including taking certain systems offline,” the company said in an 8-K filing.
“The Company is working diligently to respond to and address this issue, and is also coordinating with law enforcement. To the extent possible, and in line with its business continuity plans, Clorox has implemented workarounds for certain offline operations in order to continue servicing its customers.”
In response to the cyber attack, the company has taken some of its systems offline while it was implementing additional “protections and hardening measures to further secure them”.
Clorox notified law enforcement and has engaged leading third-party cybersecurity experts to support its investigation and determine the scope of the incident. At this time it is not clear if the attackers have stolen data from the company.
The company also announced to have implemented workarounds for some offline operations to continue servicing its customers.
The company pointed out that the incident has caused, and is expected to continue to cause, disruption to its business operations.
The company did not disclose details of the attack, but the response to the incident suggests it was victim of a ransomware attack.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, Clorox Company)
Google addressed a Chrome's Password Manager bug that caused user credentials to disappear temporarily for…
The Internet Systems Consortium (ISC) released BIND security updates that fixed several remotely exploitable DoS…
Terrorist groups are increasingly using cyberspace and digital communication channels to plan and execute attacks.…
Progress Software addressed a critical remote code execution vulnerability, tracked as CVE-2024-6327, in the Telerik Report…
A critical flaw in some versions of Docker Engine can be exploited to bypass authorization…
The CVE-2024-21412 flaw in the Microsoft Defender SmartScreen has been exploited to deliver information stealers…
This website uses cookies.