GFI Software

Welcome to the GFI Software community forum! For support please open a ticket from

Home » GFI User Forums » Kerio Connect » Kerio Cloud customer data was hacked! (A fired employee still had access to customer data.)
Kerio Cloud customer data was hacked! [message #139694] Sun, 06 May 2018 16:59 Go to next message
Think Fixed is currently offline  Think Fixed
Messages: 493
Registered: June 2014
Location: Addison, TX

This past Friday evening, a friend forwarded to me an email that she received from Kerio Cloud stating that her account information had been hacked, and that her information is now for sale on the dark net. After I forwarded this to a GFI exec, an email was sent out to Kerio Cloud customers explaining that a fired employee sent the email, and that they are now reevaluating their off boarding procedure to ensure that this does not happen again. The problem is that it happened. An apology and a promise to do better doesn't solve this. This is total incompetence on display. It's very clear that customer data was easily accessible. When you fire someone, you should terminate their access to systems at the same time that they are being fired, or just before. Whether or not my friend's payment data has been harvested is irrelevant. Her name, email address, and other identifying information was obtained, and that information can also be sold on the dark net. The damage has been done, and it's HUGE. Everyone at GFI who was responsible for not properly safeguarding customer data should be fired. Immediately. How can anyone ever trust GFI again?


*** If a GFI employee removes this post, that won't shut me up. I will post this all over the place. This is one scandal that will not be swept under the rug.
  • Attachment: email.jpg
    (Size: 85.87KB, Downloaded 544 times)

Howie Isaacks
Systems Engineer | Apple Solutions Consultant
Think Fixed LLC, Dallas and Fort Worth

[Updated on: Sun, 06 May 2018 17:04]

Report message to a moderator

Re: Kerio Cloud customer data was hacked! [message #139789 is a reply to message #139694] Tue, 15 May 2018 15:22 Go to previous message
Maerad is currently offline  Maerad
Messages: 275
Registered: August 2013
Funny, after the 25. May the European GDPR (data protection law) will be in effect. That means that kerio connect would be forced to a public statement and information to consumers and the official bodies like the gov. data protection agency's. Depending on the case, they could be fined for 300k € per incident OR 4% for the TOTAL, WORLDWIDE SALES.

If this is true, there should be at least an official statement...
Previous Topic: Kerio Connect and GoGet devices
Next Topic: Calendar sync issues with Android OS
Goto Forum:

Current Time: Fri Mar 24 19:06:15 CET 2023

Total time taken to generate the page: 0.01760 seconds