California-based laptop manufacturer, Framework Computer, has fallen victim to a data breach, according to sources. The breach occurred after their accounting service provider, Keating Consulting Group, was targeted in a phishing attack. The incident came to light on January 11 when a Keating Consulting accountant was tricked by an imposter posing as Framework’s CEO into sharing a spreadsheet containing customers’ personally identifiable information (PII).
The compromised spreadsheet contained sensitive details, including customers’ full names, email addresses, and outstanding balances for Framework purchases. The breach was promptly discovered by Framework’s Head of Finance, who alerted Keating Consulting’s leadership just 29 minutes after the accountant’s response to the attacker’s emails.
Following the breach, Framework conducted a thorough investigation to identify the affected customers whose information had been exposed. These customers were promptly notified via email about the potential risks associated with the breach. The exposed data could potentially be used in phishing attacks to deceive customers into divulging payment information or sensitive data.
Customers are advised to exercise caution and remain vigilant for any suspicious emails. Should any such emails raise concerns, customers are urged to immediately contact the company’s support team to report the activity. Framework is taking immediate action to enhance the cybersecurity measures in place. As a response to the breach, Keating Consulting employees who have access to Framework customer information will undergo mandatory training on phishing and social engineering attacks.
Furthermore, Framework has announced that they will be conducting a comprehensive audit of the standard operating procedures and training programs for other accounting and finance consultants who have previously had access to customer information. These measures aim to strengthen their security protocols and prevent future data breaches.
Unfortunately, the exact number of impacted customers has not been disclosed by Framework at this time. However, the company remains committed to protecting their customers’ privacy and will continue to monitor the situation closely.
“Zombie enthusiast. Subtly charming travel practitioner. Webaholic. Internet expert.”