On July 17, 2024, Sagent, an IT network equipment vendor, confirmed a data breach that compromised sensitive information for 826 individuals. The breach, which occurred between August 6, 2023, and November 17, 2023, involved unauthorized access to Sagent’s network. The information affected includes names, Social Security numbers, driver’s license numbers, and financial account details. Sagent’s notification highlights that certain data was viewed or taken without authorization during this period.
The ransomware group Medusa claimed responsibility for the attack, demanding a ransom of $600,000 to prevent the stolen data from being sold or publicly released. Sagent has acknowledged the breach and has been working diligently to understand the full extent of the impact. However, the company has not confirmed whether the ransom was paid or how the attackers managed to breach its network.
Sagent’s investigation into the breach concluded on April 9, 2024, but details on the method of attack and the full impact on Sagent’s systems remain unclear. The company has not verified the accuracy of Medusa’s claim regarding the ransom or provided information on any additional systems that may have been affected.
In response to the breach, Sagent is offering free identity monitoring services through Kroll to those affected. The company recommends that individuals take advantage of these services and remain vigilant in monitoring their credit and financial accounts for any signs of unauthorized activity. This proactive step is intended to help mitigate the risks associated with the exposure of personal information.
Reference:
