Clorox, the household cleaning product titan, disclosed a significant cybersecurity incident this week, which led the company to shut down several of its systems temporarily. The revelation came from a regulatory filing with the U.S. Securities and Exchange Commission (SEC) on Monday.
The company, which reported a whopping $7 billion in earnings for 2022 through renowned brands like Pine Sol, Burt’s Bees, Chux, Brita, Glad, and its namesake Clorox, stated in its 8-K filing, “The Clorox Company has identified unauthorized activity on some of its Information Technology (IT) systems.” Upon detecting the breach, Clorox immediately began remediation efforts and secured affected systems offline.
To mitigate the disruptions caused by the incident, Clorox has initiated workarounds for certain offline operations to ensure its customer services remain uninterrupted. The company also highlighted the potential business operation disruptions resulting from this breach.
While Clorox is taking stringent measures to address the issue, including hiring a third-party cybersecurity firm for assistance in recovery and collaborating with law enforcement agencies, they are still in the early phases of investigating the incident’s scope and impact.
Despite the rising concerns, Clorox remains committed to updating its stakeholders, stating, “Our team is working diligently to restore systems safely and quickly, and we will ensure all suppliers and customers are updated as necessary.”
Interestingly, in their recent 10-K report with the SEC, Clorox had forewarned about its vulnerability to cyber threats, citing an increased reliance on a plethora of technologies. The company acknowledged a surge in cyberattack attempts, including ransomware, phishing, hacking, and other potential threats, especially since transitioning to a remote working model.
The cybersecurity landscape, particularly for manufacturing companies, remains grim. Recent data from Akamai indicates a significant 42% surge in cyberattacks on the manufacturing sector between Q4 2021 and Q4 2022, surpassing all other industry sectors. Furthermore, according to Comparitech’s findings, from 2018 to July 2023, ransomware attacks on manufacturing firms resulted in an estimated loss of $46.2 billion from operational downtimes.
Such cybersecurity incidents are not unique to Clorox. Several prominent corporations, including the mattress industry giant Tempur Sealy, have fallen victim to cyberattacks in recent weeks, underscoring the urgent need for enhanced digital security measures.
Clorox has yet to make a public comment regarding the breach.
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.