Navigation
Recherche
|
Education Giant Pearson Hit By Cyberattack Exposing Customer Data
vendredi 9 mai 2025, 15:00 , par Slashdot
![]() 'We recently discovered that an unauthorized actor gained access to a portion of our systems,' a Pearson representative confirmed to BleepingComputer. 'Once we identified the activity, we took steps to stop it and investigate what happened and what data was affected with forensics experts. We also supported law enforcement's investigation. We have taken steps to deploy additional safeguards onto our systems, including enhancing security monitoring and authentication. We are continuing to investigate, but at this time we believe the actor downloaded largely legacy data. We will be sharing additional information directly with customers and partners as appropriate.' Pearson also confirmed that the stolen data did not include employee information. The education company previously disclosed in January that they were investigating a breach of one of their subsidiaries, PDRI, which is believed to be related to this attack. BleepingComputer also notes that threat actors breached Pearson's developer environment in January 2025 using an exposed GitLab access token, gaining access to source code and hard-coded credentials. Terabytes of sensitive data was stolen from cloud platforms and internal systems. Despite the potential impact on millions of individuals, Pearson has declined to answer key questions about the breach or its response. Read more of this story at Slashdot.
https://it.slashdot.org/story/25/05/09/0146239/education-giant-pearson-hit-by-cyberattack-exposing-c...
Voir aussi |
56 sources (32 en français)
Date Actuelle
sam. 10 mai - 12:36 CEST
|