Security and data analytics company Sumo Logic disclosed a security breach after discovering that its AWS account was compromised last week. The company detected evidence of the breach on Friday, November 3, after discovering that an attacker used stolen credentials to gain access to a Sumo Logic AWS account. Sumo Logic says its systems and networks weren't impacted during the breach and that "Customer data has been and remains encrypted." "Immediately upon detection we locked down the exposed infrastructure and rotated every potentially exposed credential for our infrastructure out of an abundance of caution," the company said. "We are continuing to thoroughly investigate the origin and extent of this incident. We have identified the potentially exposed credentials and have added extra security measures to further protect our systems." These measures involve enhanced monitoring and addressing potential vulnerabilities to prevent similar incidents in the future. The company also continues to monitor network and system logs to identify any indications of additional malicious activity. In light of these developments, Sumo Logic advised customers to rotate credentials used to access its services or any credentials shared with Sumo Logic for accessing other systems. "While the investigation into this incident is ongoing, we remain committed to doing everything we can to promote a safe and secure digital experience," the company said. "We will directly notify customers if evidence of malicious access to their Sumo Logic accounts is found. Customers may find updates at our Security Response Center." Sumo Logic operates a cloud-native SaaS analytics platform providing customers with log analytics, infrastructure monitoring, cloud infrastructure security services, and more. In May, private equity firm Francisco Partners acquired the company for $1.7 billion. Okta says its support system was breached using stolen credentials. Casio discloses data breach impacting customers in 149 countries. Marina Bay Sands discloses data breach impacting 665,000 customers. Mortgage giant Mr. Cooper hit by cyberattack impacting IT systems. Okta breach: 134 customers exposed in October support system hack.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Thu, 30 Nov 2023 23:19:27 +0000