Johnson Controls has confirmed that it experienced a significant cybersecurity incident in 2023. This event involved unauthorized access to parts of its IT network. The company’s investigation has determined that the incident resulted in a data breach, potentially exposing various types of information.
The compromised data may include personal information belonging to current and former employees. It is also understood that certain customer data and information related to business operations were impacted.
In response to the breach, Johnson Controls initiated a comprehensive investigation with the help of third-party cybersecurity experts. The company is now in the process of directly notifying affected individuals whose personal data was identified as potentially compromised. They are advising those impacted to remain vigilant and take steps to protect themselves, such as reviewing financial accounts and credit reports. Johnson Controls is also implementing additional security measures to help prevent future incidents.
Source: https://www.bleepingcomputer.com/news/security/johnson-controls-starts-notifying-people-affected-by-2023-breach/
