"This phishing attack enabled the threat actor to access 'certain internal IT business applications.' The malicious actor gained unauthorized entry by compromising an employee's access to the organization's internal network for business administration."
"Compromised information includes: Customer business data, Customer contact information, Intuitive's corporate data, and Intuitive's employee data. Upon discovery of the incident, the organization has taken steps to contain and investigate."
"At this time, there has been no impact on the company's operations. Since the company's network infrastructure is segmented, customer networks are unaffected."
Intuitive Surgical, a biotechnology company specializing in surgical robotics, experienced a targeted phishing attack that compromised an employee's credentials, granting threat actors access to internal IT business applications. The breach exposed customer business data, customer contact information, corporate data, and employee information. Upon discovery, the company implemented containment and investigation procedures. Affected customers received notifications about the incident. The company's network segmentation prevented impact to operational systems and customer networks, with no disruption to business operations reported.
Read at Securitymagazine
Unable to calculate read time
Collection
[
|
...
]