HomeBusinessCISA alerts CISOs to Sisense breach, as warned by Krebs on Security.

CISA alerts CISOs to Sisense breach, as warned by Krebs on Security.

Published on

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is currently investigating a breach at Sisense, a business intelligence company known for its products that allow companies to monitor multiple third-party online services through a single dashboard. Following reports of potential unauthorized access to company information on a restricted server, Sisense Chief Information Security Officer Sangram Dash advised customers to reset any shared credentials as a precaution. Despite the breach, business operations at Sisense remain uninterrupted as the investigation continues with assistance from industry experts.

With over 1,000 customers in various sectors such as finance, telecommunications, healthcare, and education, Sisense is facing questions about data protection and encryption practices after attackers reportedly gained access to the company’s code repository at Gitlab. The breach appears to have compromised sensitive data, including access tokens, email passwords, and SSL certificates, raising concerns about the security measures in place at Sisense’s cloud servers. It is evident that the breach poses a significant threat as unknown attackers now have access to all the credentials used by Sisense customers on their dashboards, potentially leading to unauthorized access to their accounts.

As the investigation unfolds, Sisense customers are left to decide when and how to change passwords for third-party services previously linked to the platform. The incident highlights the importance of encryption in safeguarding customer data and preventing unauthorized access. Industry experts like Nicholas Weaver emphasize the need for robust security measures, especially when dealing with sensitive login information on third-party systems like Amazon. The breach exposes vulnerabilities in Sisense’s data protection protocols, prompting a critical examination of cybersecurity practices within the company.

Source link

Latest articles

Why Did Devin Nunes Meet North Macedonia’s New Prime Minister? — ProPublica

Earlier this summer, Devin Nunes, the CEO of Trump Media and a former California...

Trump Media Stock Soars as Ex-President Declines to Sell Shares

Shares of Trump Media and Technology Group experienced a significant rise on Friday after...

’90s Music Industry Hard Drives Are Failing

Iron Mountain, an enterprise storage and destruction company, is observing a significant issue while...

Celularity Announces Executive Departure via Investing.com

Celularity Inc. (NASDAQ:CELU), a biotechnology firm specializing in pharmaceutical preparations, has announced the resignation...

More like this

Why Did Devin Nunes Meet North Macedonia’s New Prime Minister? — ProPublica

Earlier this summer, Devin Nunes, the CEO of Trump Media and a former California...

Trump Media Stock Soars as Ex-President Declines to Sell Shares

Shares of Trump Media and Technology Group experienced a significant rise on Friday after...

’90s Music Industry Hard Drives Are Failing

Iron Mountain, an enterprise storage and destruction company, is observing a significant issue while...