One of world’s leading market research company Forrester has confirmed a data breach on the infrastructure hosting their website Forrester.com.
Forrester helps customers to take decisions on launching their new product or service based on the existing and potential impact of technology.
After Equifax, Deloitte, Disqus, Forrester is the 4th business entity to be reported as breached in a span of 30 days.
The company said on Friday that the breach occurred during last week and it is still unknown who is behind this breach.
The hacker accessed the forrester.com accounts using a stolen valid user credentials. Using that access, hackers stole the research reports which were made available to customers.
Steven Peltzman, Forrester’s Chief Business Technology Officer, said that: “There is no evidence that confidential client data, financial information, or confidential employee data was accessed or exposed as part of the incident.”
The company said that no sensitive information was stolen, but the market research data of their customers can be very useful for the economic espionage hacker group.
Based on the stolen data hackers can find out what all technologies are used by their clients and which all are the products ready to launch. Hackers can also sell this information in dark web marketplaces.
“We recognize that hackers will attack attractive targets — in this case, our research IP. We also understand there is a tradeoff between making it easy for our clients to access our research and security measures, We feel that we have taken a common-sense approach to those two priorities; however, we will continuously look at that balance to respond to changing cybersecurity risk,” said George F. Colony, Chairman and Chief Executive Officer of Forrester.
Forrester said that the investigation is still going on and it has informed the Law and Enforcement Authorities to take necessary actions and do the needful.
You may be interested in reading: Breach in Deloitte Exposes Clients Confidential Information.
Leave a Reply