Cybercriminals have reportedly published some internal documents of BPO firm Conduent after breaking into its data networks in Europe last month.
The Florham Park, New Jersey-based provider has confirmed the attack to some news outlets through emails, adding that it had launched a forensic investigation to assess the damage. Conduent was formed when Xerox divested in 2017. It currently has Nearshore locations in Jamaica, Mexico and Guatemala.
The incident took place on May 29 and lasted for about nine hours. The attack shut down some of the company’s systems in Europe. Conduent says it quickly restored the system but did not confirm whether it lost any data.
The published documents were related to the company’s operations in Germany, reported news portal CRN, citing an analysis by a security expert.
This is the third such incident in the global outsourcing industry in the past month. A ransomware group had similarly published sensitive data, including social security numbers, after hacking into the servers of Execupharm.
The rising wave of cyber incidents has no doubt left the outsourcing industry scrambling to safeguard its systems.
Analysts say Conduent fell victim to a Maze ransomware group, which had carried out an attack on Cognizant as well, causing millions of dollars in loss.
Conduent has also told media houses that the attack could have “a negative impact” on its finances.
Ransomware attackers usually do not publish the data, but they seek ransom in exchange for the data they have stolen. They will publish the data if they are not paid the ransom, analysts say.
Earlier this year, a Dutch university called Maastricht reportedly paid US$220,000 in ransom after a ransomware group stole its critical data, putting its research activity in jeopardy.