好的,用户让我帮忙总结一下这篇文章的内容,控制在100字以内,并且不需要特定的开头。首先,我需要仔细阅读文章内容,抓住关键信息。 文章主要讲的是爱立信美国分公司因为第三方服务提供商被攻击而发生了数据泄露。泄露了员工和客户的个人信息。攻击发生在2025年4月17日至22日之间,服务提供商发现异常后立即展开了调查,并通知了FBI。调查发现部分数据被暴露,但目前没有检测到数据被滥用的情况。爱立信为受影响的个人提供了免费的身份保护服务。 接下来,我需要将这些信息浓缩到100字以内。首先确定主要事件:爱立信美国因第三方被黑导致数据泄露。然后是时间范围:4月17日至22日。接着是泄露的数据类型:员工和客户信息。然后是应对措施:通知FBI并展开调查,提供身份保护服务。 最后,确保语言简洁明了,不使用复杂的句子结构。这样总结出来的内容既准确又符合用户的要求。 </think> Ericsson美国分公司因第三方服务提供商遭黑客攻击发生数据泄露,员工及客户个人信息可能被暴露。攻击发生在2025年4月17日至22日间,服务提供商已通知FBI并展开调查,未发现数据滥用迹象。公司为受影响者提供免费身份保护服务。 2026-3-10 08:44:55 Author: securityaffairs.com(查看原文) 阅读量:8 收藏
Ericsson US confirms breach after third-party provider attack
Ericsson US reports a data breach after attackers hacked a service provider, exposing employee and customer information.
Ericsson Inc., the U.S. branch of the Swedish telecom giant, disclosed a data breach after a service provider was hacked. The attack compromised the personal information of an unspecified number of employees and customers.
“On April 28, 2025, our service provider became aware of a suspicious event that may have involved potential unauthorized access to certain data on their system. It promptly initiated an investigation with the assistance of external cybersecurity specialists.” reads the data breach notification letter shared with the California Attorney General. “It also notified the Federal Bureau of Investigation and implemented measures to enhance security and minimize the risk of a similar incident occurring in the future.”
Ericsson is a Swedish multinational networking and telecommunications company that provides mobile and fixed network infrastructure, software, and services. It supports telecom operators worldwide with 5G, IoT, and cloud solutions, enabling connectivity, digital transformation, and advanced communication technologies.
Between April 17 and 22, 2025, a service provider experienced potential unauthorized access to certain files. After the breach, the service provider notified the FBI and started investigating the incident with the help of cybersecurity experts. The investigation found that some data was exposed, but no misuse has been detected to date.
“Based on the investigation, our service provider determined that a limited subset of files may have been accessed or acquired without authorization between April 17, 2025 and April 22, 2025,” continues the notification. “As part of its investigation, it retained external data specialists to conduct a comprehensive review of the potential affected files to identify any personal information. That review was completed on February 23, 2026 at which time we determined that that some of your personal information was contained within the affected files.”
The company offers affected individuals complimentary identity protection services through IDX, including credit monitoring, dark web monitoring, identity theft recovery, and a $1 million identity fraud loss reimbursement policy, available to those who enroll by June 9, 2026.
At this time, no ransomware group claimed responsibility for the breach.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, Ericsson)
如有侵权请联系:admin#unsafe.sh