Multinational mass media conglomerate Paramount Global disclosed a data breach.
According to the data breach notification letter sent to the impacted individuals, an unauthorized party accessed files from certain systems of the company between May and June 2023.
Paramount Global launched an investigation into the incident and determined that threat actors had access to some files containing some personal information.
The personal information may have included name, date of birth, Social Security number or other government-issued identification number (such as driver’s license number or passport number) and information related to the relationship of the impacted individuals with Paramount.
The notification pointed out that types of affected personal information vary by individual.
“We took steps to secure the relevant systems and launched an investigation to determine the nature and scope of the issue. We retained a third-party cybersecurity expert to conduct an investigation and are coordinating with law enforcement.” reads the letter sent by the company to the impacted individuals. “We also are implementing enhanced measures to help prevent this type of issue from reoccurring.”
Bleeping Computer reported that according to the company the incident impacted less than 100 individuals. Paramount did not disclose details about the attack.
The company is also offering impacted individuals free identity protection and credit monitoring services for two years.
Paramount Global states it has no evidence to date that the accessed personal information has been misused as a result of the security breach.
“Nevertheless, we take our obligation to safeguard personal information very seriously and are alerting you about this issue so you can take steps to help protect yourself. You are entitled under U.S. law to one free credit report annually from each of the three nationwide consumer reporting agencies.” concludes the letter.
(SecurityAffairs – hacking, data breach)