back to article Collabera hacked: IT staffing'n'services giant hit by ransomware, employee personal data stolen

Hackers infiltrated Collabera, siphoned off at least some employees' personal information, and infected the US-based IT consultancy giant's systems with ransomware. We understand this swiped data included workers' names, addresses, contact and social security numbers, dates of birth, employment benefits, and passport and …

  1. Tubz
    Facepalm

    Seems common in the US of A$$, if data stolen, to offer a couple of years of so called "protection" with another dodgy company and they get off with a minor slap wrist. Hope the employees do a class action lawsuit, companies need to be punished, to fulfil their security obligations. UK/EU DPA/GDPR may not be perfect but offers more protection and our watchdog is finally starting to wake up and punish companies. Just waiting for the first %% of global turnover fine !!

    1. Anonymous Coward
      Anonymous Coward

      I suspect in years to come we'll see the Network and Information System Regulation grow arms and legs, if it ever applies in a mandatory way to anything outside of critical national infrastructure it'll be a wake up calls to large companies.

  2. The Nazz

    Cynical, moi?

    I may be cynical, and joking, but are we sure it's not an Experian backed squad of hackers doing this?

    They seem to get a lot of business pushed their way.

    1. Wade Burchette Silver badge

      Re: Cynical, moi?

      In the United States you can freeze your credit for free. This is a service which requires you to provide a PIN code before you can take out any credit. Instead of offering Experian credit monitoring for two years -- the hackers just need to wait 2 years for the heat to die off -- is to help the employees freeze their credit. You need to do this free service with Equifax, Experian, and TransUnion.

  3. Cuddles Silver badge

    ...yet

    "does not believe the lifted records have been used for fraud"

    It has not been used for fraud yet. Once the data is out there, the chance of it not being used for fraud eventually is essentially zero. Saying you haven't noticed it happening yet is an utterly worthless statement that only suggests you're hoping everyone has forgotten about this specific leak by the time the fraud actually happens so you don't need to worry about being held responsible for it.

  4. Prst. V.Jeltz Silver badge
    Facepalm

    bit of an own goal when a company selling I.T. services falls victim to this sort of thing

    1. Version 1.0 Silver badge

      It would be interesting to know how this happened - I expect that it was just an email slipping through the virus checks. Releasing the "how it happened" information would help other people prevent this from happening to them - every day I see emails arrive with interesting attachments:

      P.O 567934.zip (P.O 567934.exe) , 0072635_20200713_pdf.ace, PON991197.doc, Payment details.zip (Payment details.exe), Invoice_376102_INC.xlsm, English_Court OrderCASE#036886890678.iso, etc.

      1. NetBlackOps Bronze badge

        One such attachment just showed up here a couple of hours ago. Filed to the bitbucket. Surprisingly since it has been years since the last.

  5. Anonymous Coward
    Anonymous Coward

    I was the memo leaker

    Posting as AC for obvious reasons. I've been a reg reader for years and was proud to have the opportunity to both give the reg an exclusive (this was not confirmed publicly prior to this article) and give a giant middle finger to Collabera who f$%&ed me over with this (in addition to the legal action I am pursuing).

    I was pissed but not surprised, terrible company through and through.

    Anyway, if you got tips, give em to the reg! They got this article cranked out less than 12 hours after I sent them the memo! Thanks Shaun!

    1. logicalextreme Silver badge

      Re: I was the memo leaker

      I thought you'd accidentally signed off as "Shaun" there for a second :D

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021