Hackers hit Chegg for the third time since 2018

[Destry Winant <destry () riskbasedsecurity com>]

https://techcrunch.com/2020/04/29/hackers-chegg-employee-breach/

Chegg  has confirmed its third data breach in the past three years.

The education tech giant, which last year acquired Thinkful for $80
million, said hackers stole 700 current and former employee records,
including their names and Social Security numbers.

The company had more than 1,400 full-time employees at the start of the year.

Chegg said it enlisted an outside forensic firm — without naming the
firm — and notified law enforcement of the breach.

A spokesperson for Chegg did not respond to a request for comment.

The education tech company has been beset by several security
incidents. In 2018, hackers made off with 40 million customer records,
forcing the company to reset user passwords. Then, almost exactly a
year later, Chegg confirmed another data breach at Thinkful, which it
had just acquired.

Just yesterday, a federal judge in Baltimore granted Chegg’s motion to
force into arbitration a lawsuit stemming from the 2018 data breach.

At the time of writing, Chegg’s stock price was up by 2% in early
afternoon trading in New York.
_______________________________________________
BreachExchange mailing list sponsored by Risk Based Security
BreachExchange () lists riskbasedsecurity com

If you wish to Edit your membership or Unsubscribe you can do so at the following link:
https://lists.riskbasedsecurity.com/listinfo/breachexchange