Paramount Global disclosed a data breach

Multinational mass media conglomerate Paramount Global suffered a data breach after an unauthorized party accessed files from certain of its systems.

Multinational mass media conglomerate Paramount Global disclosed a data breach.

According to the data breach notification letter sent to the impacted individuals, an unauthorized party accessed files from certain systems of the company between May and June 2023.

Paramount Global launched an investigation into the incident and determined that threat actors had access to some files containing some personal information.

The personal information may have included name, date of birth, Social Security number or other government-issued identification number (such as driver’s license number or passport number) and information related to the relationship of the impacted individuals with Paramount.

The notification pointed out that types of affected personal information vary by individual.

“We took steps to secure the relevant systems and launched an investigation to determine the nature and scope of the issue. We retained a third-party cybersecurity expert to conduct an investigation and are coordinating with law enforcement.” reads the letter sent by the company to the impacted individuals. “We also are implementing enhanced measures to help prevent this type of issue from reoccurring.”

Bleeping Computer reported that according to the company the incident impacted less than 100 individuals. Paramount did not disclose details about the attack.

The company is also offering impacted individuals free identity protection and credit monitoring services for two years.

Paramount Global states it has no evidence to date that the accessed personal information has been misused as a result of the security breach.

“Nevertheless, we take our obligation to safeguard personal information very seriously and are alerting you about this issue so you can take steps to help protect yourself. You are entitled under U.S. law to one free credit report annually from each of the three nationwide consumer reporting agencies.” concludes the letter.

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, data breach)

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.