Norton Life Lock, a cyber security service provider has been hit by a data breach in which more than 6000 of its customers had their account compromised. Personal information like name, email address and other sensitive data of users might have been exposed in such an attack.
Gen Digital, parent company of Norton Life Lock has sent data breach notifications informing the users that hackers have successfully breached Norton Password Manager accounts in credential suffering attacks.
The company claims that the attacks did not result from a breach on the company but from account compromise on other platforms. Company believes that its own systems were not compromised rather it is the unauthorized third party which has made failed login attempts into its user’s accounts.
In accessing your account with your username and password, the unauthorized third party may have viewed your first name, last name, phone number, and mailing address – Norton LifeLock stated.
Failure of Norton Life Lock to properly secure a third party vendor’s access to their system appears to be the root cause behind such an attack.
This attack sets the alarm to other organization to properly vet and monitor any third party access to sensitive information. The organization must update their security protocols to prevent similar data breaches.