Ericsson US discloses data breach after service provider hack

Ericsson Inc., the U.S. subsidiary of the global telecommunications infrastructure provider, publicly disclosed a data breach on March 9, 2026, after attackers compromised one of its external service providers¹. This incident resulted in the unauthorized acquisition of data belonging to an an undisclosed number of Ericsson's employees and customers. While the specific third-party vendor was not named, nor was the exact scope of the stolen information detailed, the disclosure highlights a critical supply chain vulnerability. Malicious actors exploited a weakness in a partner's systems, bypassing Ericsson's direct defenses to access proprietary or personal data. This event exemplifies the pervasive threat of indirect attacks, where an organization’s security is intimately linked to the weakest link in its extended network of vendors. For cybersecurity practitioners, this serves as a stark reminder that robust internal security controls are insufficient if third-party access and data stewardship are not rigorously managed. Proactive vendor risk management and continuous monitoring of external dependencies are imperative to prevent similar compromises.