Gen Digital Confirms CCleaner Experienced MOVEit Related Data Breach

Richard Console, Jr.
Console and Associates, P.C.
Contact
LinkedIn
Facebook
X
Send
Embed

On approximately October 25, 2023, Gen Digital began sending an unknown number of CCleaner users an email disclosing a recent data breach. In this notice, Gen Digital explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, contact information and information about the products they purchased from Gen Digital. Upon completing its investigation, Gen Digital began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you receive a data breach notification from Gen Digital, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the CCleaner data breach. For more information, please see our recent piece on the topic here.

What Caused the CCleaner Data Breach?

The CCleaner data breach was only recently announced, and more information is expected in the near future. However, Gen Digital’s emails to consumers (which users have since posted on the social media platform “X”) provide some background information about what happened. According to this source, CCleaner uses a file-transfer software called MOVEit. Back in May 2023, Progress Software, the creator of MOVEit, announced that the program contained a critical vulnerability that allowed unauthorized actors to access companies’ MOVEit servers.

When CCleaner learned about the MOVEit vulnerability, it launched an investigation to determine what, if any, confidential information in its possession was affected. This investigation recently confirmed that certain information belonging to consumers was accessible to an unauthorized party through the CCleaner MOVEit server.

After learning that sensitive consumer data was accessible to an unauthorized party, Gen Digital reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, contact information and information about the products you purchased from Gen Digital.

On October 25, 2023, Gen Digital’s email to affected parties went out. It remains unclear if this is to serve as the CCleaner data breach letter or if a more formal letter is to follow through US mail.

More Information About Gen Digital

Gen Digital is a software company with headquarters in Tempe, Arizona and Prague, Czech Republic. The company was previously known as NortonLifeLock, but changed its name in 2022 after its merger with Avast. Gen Digital specializes in creating cybersecurity software. Some of the company’s brands include Norton, Avast, LifeLock, Avira, AVG, ReputationDefender, and CCleaner. Gen Digital employs more than 3,700 people and generates approximately $3 billion in annual revenue.

Send Print Report

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations. Attorney Advertising.

© Console and Associates, P.C.

Written by:

Console and Associates, P.C.
Console and Associates, P.C.
Contact
more
less

PUBLISH YOUR CONTENT ON JD SUPRA NOW

  • Increased visibility
  • Actionable analytics
  • Ongoing guidance

Console and Associates, P.C. on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign Up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide