The massive 2023 cyber attack on Clorox can be traced to a negligent help desk employee at longtime contractor Cognizant, according to a new lawsuit filed by the company. Clorox is seeking a total sum of $380 million for breach of contract, lost sales and reputational damage, with $49 million of that in direct remediation.
In at least two of the attacks, those on Co-op and Marks and Spencer, the DragonForce group is confirmed to have used very similar social engineering approaches to convince the IT help desks to have an employee password reset.


