Cognizant Technology Solutions allegedly hit by major data leak

IntelBroker, a prominent member of the notorious BreachForums, has allegedly leaked a significant amount of data stolen from Cognizant Technology Solutions. Cognizant, a leading American multinational specializing in IT services and consulting, is reported to have compromised sensitive information, including a document containing 12 million lines from its internal website and user data from its Oracle Insurance Policy Admin System (OIPA), a cloud-based DevOps solution.

According to IntelBroker, the leaked data encompasses approximately 40,000 user records with sensitive fields such as policy numbers, role codes, client names, company codes, state codes, role sequence numbers, arrangement numbers, arrangement statuses, start and end dates, draft days, modular amounts, and next premium due dates. These records could potentially expose significant personal and corporate information.

When contacted by the media, Cognizant officials stated, “We are aware of the reports made by a cybercriminal organization, claiming it has targeted some of our services. We take this matter very seriously and are investigating the validity and extent of this claim.” Notably, the spokesperson did not confirm or deny the data leak reports.

This breach could have extensive implications if verified, posing significant risks to affected individuals and damaging Cognizant’s reputation. This incident underscores the evolving threats that corporations face from sophisticated cybercriminals.

IntelBroker has a history of high-profile cyber intrusions, including a claimed breach involving Advanced Micro Devices (AMD). The hacker’s previous targets include major tech corporations, critical infrastructure, and government contractors, with notable incidents at institutions such as Apple, Lindex Group, and Acuity.

Cognizant is no stranger to cyber threats. In September 2023, the company reported a data breach involving unauthorized access to confidential consumer data. This followed a major ransomware attack in April 2020 by the Maze ransomware group, which caused service disruptions and was estimated to result in losses between $50 million and $70 million. Cognizant provided affected customers with indicators of compromise (IOCs) to aid their defensive measures.