Logitech Confirms Data Breach Following Designation as Oracle Hack Victim

Logitech disclosed a data breach shortly after it was named as a victim of the recent hacking and extortion campaign targeting customers of Oracle’s E-Business Suite (EBS) enterprise resource planning solution.

In a Friday filing with the SEC, the consumer electronics giant said it recently experienced a cybersecurity incident that involved data exfiltration.

“While the investigation is ongoing, at this time, Logitech believes that the unauthorized third party used a zero-day vulnerability in a third-party software platform and copied certain data from the internal IT system,” Logitech said.

“The data likely included limited information about employees and consumers and data relating to customers and suppliers. Logitech does not believe any sensitive personal information, such as national ID numbers or credit card information, was housed in the impacted IT system,” it added.

The company noted that products, business operations, or manufacturing were not impacted, and it does not believe the ...