- The cereal giant KW KELLOGG has undergone a data violation
- Fortunately, so far, only four people seem to be affected
- This could be connected to recent violations of key file transfer
The WK Kellogg cereal giant was struck by a data violation at the beginning of 2025, which affected an unknown number of people.
Cyberness Reports on violation notifications were sent to the prosecutor general’s offices in Maine and New Hampshire, but these people have been affected between the two states.
The servers affected by the violation were used to transfer employees’ recordings to the HR service providers of WK Kellogg, which means that certain data exposed include personally identifiable information (PII). This could leave people affected at risk of identity and fraud, so WK Kellogg rightly offers a year of credit monitoring and protection services against identity theft to people affected in the violation.
A familiar story
The violation would have been created through a third -party supplier, the Cleo file transfer service, which was also used in an alleged attack by Ransomware C10P against the SAM club at the end of March 2025.
This incident has seen the attackers intercept personal data of around 100,000 employees, and was part of a much wider campaign by the C10P group in which at least two dozen organizations were compromised thanks to the vulnerability of the file services.
It is not yet clear if the violation of WK Kellogg is a ransomware attack or if the same group behind the incident – and the company did not respond immediately with any comments.
WK Kellogg is far from alone, because third -party data violations have become a major security concern, almost all European companies (98%) undergoing a third -year violation of last year, against only 18% of organizations with direct violation.
In the era of globalization, it is almost impossible to manage a business without collaborating with third parties, so knowing your supplier and being confident in the management of the risks with which they come is essential to ensure the safety of your information.
