State of New Jersey SealOFFICIAL SITE OF THE STATE OF NEW JERSEY

Whirlpool

NJCCIC Data Breach Notification

Original Release Date: 10/21/2019

Summary

A Whirlpool web interface was publicly exposed, containing data for the Heartbeat monitoring service. The exposed data contained more than 28 million records of information collected from internet of things (IoT) connected home appliances, such as customer email, SAID number (smart appliance ID), model name and number, and different attributes of the scanned appliance. Within 24 hours of notifying Whirlpool, the database and web interface were taken offline and secured. While approximately 48,000 emails were publicly available, no confidential information was exposed. Whirlpool is reaching out to impacted customers.

Join & Subscribe

Never miss an update! Sign up for a no cost membership today! Receive up-to-date content and more in our weekly bulletin.

Sign Up

Featured Content

New Jersey Cybersecurity & Communications Integration Cell

2 Schwarzkopf Dr, Ewing Township, NJ 08628

njccic@cyber.nj.gov

OUR COMMITMENT

The NJCCIC is a component organization within the New Jersey Office of Homeland Security and Preparedness. We are the State's one-stop-shop for cyber threat analysis, incident reporting, and information sharing and are committed to making New Jersey more resilient to cyber threats by spreading awareness and promoting the adoption of best practices.

Agency Seals of State of NJ, NJOHSP and NJCCIC

STAY CONNECTED:

View our Privacy Policy here.

View our Site Index here.