American entertainment giant Paramount Global has fallen victim to a significant data breach, wherein attackers successfully gained access to sensitive personally identifiable information (PII). The breach, which transpired between May and June of 2023, was disclosed through breach notification letters signed by Brian Keane, EVP of Nickelodeon Animation Studio.
The compromised PII includes individual’s names, dates of birth, Social Security numbers, and even government-issued identification numbers like driver’s license or passport numbers, alongside information associated with their engagement with Paramount. The scope of the breach is being probed through a comprehensive investigation, with Paramount enlisting the aid of cybersecurity experts and collaborating closely with law enforcement agencies.
Upon the discovery of the breach, Paramount Global promptly initiated measures to secure their affected systems, demonstrating a swift response to mitigate the situation. The company has undertaken a thorough evaluation to discern the exact extent of the breach, reinforcing its commitment to safeguarding the affected individuals’ privacy. To bolster its cybersecurity posture, Paramount has enlisted the expertise of dedicated cybersecurity professionals and is actively cooperating with law enforcement to thoroughly examine the attack.
Although the breach has affected a relatively small group—less than 100 individuals—Paramount Global has maintained transparency throughout the ordeal. The company has diligently informed both the impacted individuals and relevant authorities about the breach, adhering to their responsibility for breach notification.
However, the nature of the affected group—whether they are employees or customers, such as Paramount+ subscribers—has yet to be disclosed, leaving questions about the breach’s potential ramifications.
