payroll, and benefits management company Sequoia said in disclosures to customers at the beginning of the month that it detected unauthorized access to a cloud storage repository that contained an array of sensitive and personal data related to the company's Sequoia One customers.
“An unauthorized party may have accessed a cloud storage system that contained personal information,” the company wrote in the customer and individual disclosures. WIRED reviewed examples of both notifications.
The disclosures say that Dell Secureworks did not find malware on Sequoia's systems, did not see evidence of a data extortion attempt, did not find any compromised computers or servers in Sequoia's infrastructure, and did not see evidence of ongoing unauthorized access to the company's systems. Sequoia emphasizes that it has not detected any use or distribution of the data so far.
Still, it is common for hackers or even their automated systems to find and scrape unsecured cloud storage systems, and stolen data can take time to surface.
You mean a terrible product with terrible UX and terrible customer service was terribly run? Extra awesome on top of dealing with that now my PID is at risk.