WK Kellogg Data Breach Linked to Clop Ransomware Attack

WK Kellogg Co., the renowned cereal manufacturer, experienced a significant data breach when cybercriminals exploited vulnerabilities in Cleo’s file transfer software. The Clop ransomware group leveraged zero-day flaws—CVE-2024-50623 and CVE-2024-55956—to access servers used for transferring employee files to HR service providers. The breach, discovered in February 2025, exposed sensitive employee information, including names and Social Security numbers. WK Kellogg has since notified affected individuals and is offering one year of complimentary identity theft protection through Kroll. This incident underscores the critical importance of securing third-party vendor systems to protect sensitive data.

Kelloggs Data Breach

Kelloggs Data Breach: Hackers Infiltrate Cleo Servers, Compromise Sensitive Employee Data

WK Kellogg Co. experienced a significant data breach when cybercriminals infiltrated the servers of their third-party vendor, Cleo, compromising sensitive employee information. The CL0P ransomware group exploited a zero-day vulnerability in Cleo's software, gaining access to data like names and Social Security numbers undetected for nearly three months. While the initially reported impact involved a small number of individuals, the nature of the stolen data suggests a potentially wider reach, prompting Kelloggs to offer identity protection services and implement enhanced security measures while highlighting crucial lessons about vendor and vulnerability management. ... Read More