Security Experts:

Connect with us

Hi, what are you looking for?



Maze Ransomware Caused Disruptions at Cognizant

Professional services company Cognizant has fallen victim to a cyber-attack which appears to have been the work of the Maze ransomware operators.

Professional services company Cognizant has fallen victim to a cyber-attack which appears to have been the work of the Maze ransomware operators.

Headquartered in New Jersey, United States, the multinational corporation delivers digital, technology, consulting, and operations services to customers worldwide. With roughly 300,000 employees around the world, Cognizant ranked 193 on the Fortune 500 list in 2019.

On Friday, the IT services giant confirmed that it fell victim to a cyber-attack that resulted in service disruption for some customers.

“Cognizant can confirm that a security incident involving our internal systems, and causing service disruptions for some of our clients, is the result of a Maze ransomware attack,” the company said.

The company did not provide information on how many systems were affected, but said it was working on containing the incident.

“We are in ongoing communication with our clients and have provided them with Indicators of Compromise (IOCs) and other technical information of a defensive nature,” Cognizant revealed.

The IT giant also said it has contacted the appropriate law enforcement authorities about the incident.

While no information on how the attackers managed to compromise the company’s network is available, chances are that they had a foothold on Cognizant’s internal systems for weeks, in line with Maze ransomware operators’ modus operandi, Bleeping Computer says.

Moreover, it is likely that the attackers were able to steal files before encrypting them, and that they would threaten the IT giant with making the data public unless a ransom is paid.

Maze operators have a history of releasing the stolen data and other ransomware operators have adopted the tactic, as it allows them to boost revenue.

Related: Human-Operated Ransomware Is a Growing Threat to Businesses: Microsoft

Related: Maze Ransomware Operators Publish Victim Data Online

Related: Double Extortion: Ransomware’s New Normal Combining Encryption with Data Theft

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.


The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Application Security

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.


No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.