On August 11, a cyber criminal called Clorox's IT service desk, Cognizant, posing as an employee who needed to reset their password and multifactor-authentication. Without verification of the caller's identity, the service desk fulfilled the request, allowing the hacker to eventually gain control of a Clorox user's account to plant ransomware and steal information worth $380M in damage. Clorox filed a lawsuit on their out-sourced service desk, asserting that they disobeyed Clorox's support procedures, causing the hack. In defense, Cognizant has stated that cybersecurity was out of their scope of service for Clorox, and the fault lay in Clorox's internal cybersecurity system.