Cybersecurity incident at Bose Corporation

The U.S. audio equipment manufacturer, Bose Corporation, has confirmed that it was the victim of a sophisticated cybersecurity incident due to the spread of malware/ransomware in its IT environment.

The incident was detected on its U.S. systems on 7th of March and the incident response protocol was activated, containing it and hardening defences against unauthorised activity.

The investigation, conducted in collaboration with third parties and completed on 29th of April, revealed that cybercriminals interacted with a limited number of files and some were exfiltrated. In response, Bose is working with the US Federal Bureau of Investigation to monitor the Dark Web and began notifying those affected on 19th of May.