The company said it discovered “unauthorized activity” within its networks on October 3 and promptly moved to disconnect affected systems.