[BreachExchange] Belden hit by attack on company servers

[Destry Winant]

https://www.scmagazine.com/home/security-news/belden-hit-by-attack-on-company-servers/

Network gear manufacturer Belden last week reported that it was hit by
outside attackers who accessed its company data servers.

In a statement, the company said the incident involved unauthorized
access and copying of some current and former employee data, as well
as limited company information about some business partners.

The security issue did not impact production lines at Belden
manufacturing plants, quality control or shipping. Belden said once
its IT professionals detected unusual activity in some company
servers, staff activated its incident response plan, deployed teams of
internal IT specialists, and engaged leading third-party cybersecurity
forensic experts and other advisors to identify and mitigate the
incident’s impact.

While the investigation continues, the company believes it has stopped
further unauthorized access of personal and business partner company
data. Belden has been working with regulatory and law enforcement
officials to investigate the matter and has contacted business
partners impacted by the incident.

Kacey Clark, threat researcher at Digital Shadows, said since
attackers have reportedly compromised employee data and company
information, those affected should watch out for potential
spearphishing emails.

“Based on the reporting, Belden is currently investigating the breach,
and details on how to protect potentially affected network hardware
are likely forthcoming,” she said. “In the meantime, organizations
should ensure that all of their hardware and software is up-to-date
regarding security patches.”