Summary: A Pennsylvania utility company, PPL Electric Utilities, reported that basic customer data stolen from a vendor due to a MOVEit software breach in 2023 has been exposed online, but it did not compromise the company’s core systems. The exposed data includes names, addresses, phone numbers, email addresses, and account numbers, but not sensitive financial information. The situation is unrelated to PPL’s own infrastructure, emphasizing the vendor’s role in the breach.
Affected: PPL Electric Utilities
Keypoints :
- Basic customer data exposed online from a vendor breach involving MOVEit file transfer software.
- Data compromised does not include sensitive information like banking details or social security numbers.
- Link to a cybersecurity organization highlights connections to a hacker known as “nam3l3ess”.
Source: https://therecord.media/pennsylvania-utility-says-moveit-vendor-breach-exposed-some-data