Open Enrollment: How HCL Exposed Employee Passwords and Project Data

A member of UpGuard’s Data Breach Research team discovered an open file of sensitive data belonging to technology provider HCL during routine checks for data leaks. Personal information and plaintext passwords for newly employed staff members, customer infrastructure installation documents and personnel management apps were among the data exposed. Following notification by UpGuard, HCL took steps to secure the accessible data. In recent months, UpGuard has uncovered high profile data breaches at the Department of Housing and Urban Development and Mexican media firm Cultura Colectiva.