CannonDesign Details
CannonDesign
Buffalo, New York • 1000 employees • Construction and Engineering
United States
Industry
Construction and Engineering
Security Incidents
1
CannonDesign is an integrated design firm known for its commitment to leveraging creative solutions to address some of the most significant challenges facing clients and society. The firm's expertise spans various sectors, including education, healthcare, community development, and business innovation. CannonDesign’s mission centers on improving human life by designing for equity, accessibility, inclusivity, and scientific advancement. They collaborate with organizations to drive meaningful change through thoughtful and impactful design.
Founded in 1945, CannonDesign has grown to become a not...
Show more
Security Incidents
CannonDesign Breach of Jan 2023
The company detected the breach on January 25, 2023, but the investigation was completed only by May 3, 2024. Despite no evidence of attempted misuse, the stolen data has been published online multiple times. I...
Show more
Despite CannonDesign detecting the breach relatively quickly, the investigation extended until May 3, 2024. During this time, the stolen data was published online repeatedly, altho...
Show more
Severity Score
Moderate
Type
Ransomware AttackSummary
CannonDesign experienced a data breach from January 19 to January 25, 2023, attributed to the Avos Locker ransomware group. During this period, unauthorized access allowed attackers to exfiltrate sensitive information. The breach compromised personal details such as names, addresses, Social Security numbers, and driver's license numbers of more than 13,000 current and former employees.The company detected the breach on January 25, 2023, but the investigation was completed only by May 3, 2024. Despite no evidence of attempted misuse, the stolen data has been published online multiple times. I...
Show more
Impact
In a recent incident involving CannonDesign, the company fell victim to a data breach orchestrated by the Avos Locker ransomware group between January 19 and January 25, 2023. Attackers managed to gain unauthorized access and exfiltrate sensitive personal information from more than 13,000 current and former employees. Compromised data included names, addresses, Social Security numbers, and driver's license numbers.Despite CannonDesign detecting the breach relatively quickly, the investigation extended until May 3, 2024. During this time, the stolen data was published online repeatedly, altho...
Show more
KEEP YOUR ENVIRONMENT SECURE
Weak credentials are the leading cause of breaches. Beyond Identity can help.
See MFA exploits in action
Watch how adversaries exploit companies in quick videos