OneLogin Data Breach May Have Revealed Encrypted Data

in #news7 years ago

OneLogin, an identity management software company, announced yesterday that it suffered a data breach. Although the firm hasn't provided many details, the few that it has released suggest that the breach is extensive. Photo: AP

Customers were warned about the incident in an email yesterday, and OneLogin also posted a short blog post about the problem. A more detailed support page is accessible to customers only, but an apparent Pastebin copy of the page notes that "customer data was compromised, including the ability to decrypt encrypted data".

OneLogin specialises in managing logins and access for large enterprises and counts major tech companies like Dropbox and Pinterest among its customers. As of 2013, OneLogin boasted 12 million users across 700 companies, and those numbers have likely grown significantly in the last few years.

It isn't clear from OneLogin's statements so far what kind of customer data was stolen, but the fact that the company is advising mass password resets suggests that passwords may have been compromised. This means that many companies are going to spend today doing security clean-up. Until more details emerge, it's also not clear what the breach means for people that use services offered by OneLogin's customers.

Alvaro Hoyos, OneLogin's chief information security officer, said in the blog post that the company discovered the breach yesterday, and that its investigation into what happened is ongoing. Hoyos added few details about the investigation:

Today we detected unauthorised access to OneLogin data in our US data region. We have since blocked this unauthorised access, reported the matter to law enforcement, and are working with an independent security firm to determine how the unauthorised access happened and verify the extent of the impact of this incident. We want our customers to know that the trust they have placed in us is paramount.

Read more at https://www.gizmodo.com.au/2017/06/onelogin-data-breach-may-have-revealed-encrypted-data/#m4YO58OtoVsBt6gu.99
Follow @contentjunkie to stay up to date on more great posts like this one.

#technology #security #life #passwords
7 years ago in #news by
$2.85
  • Past Payouts $2.85, 0.00 TRX
  • - Author $2.33, 0.00 TRX
  • - Curators $0.52, 0.00 TRX
85 votes
Reply 1
Sort:  
  • Trending
    • [-]
     7 years ago 

    This post has been ranked within the top 80 most undervalued posts in the first half of Jun 02. We estimate that this post is undervalued by $12.14 as compared to a scenario in which every voter had an equal say.

    See the full rankings and details in The Daily Tribune: Jun 02 - Part I. You can also read about some of our methodology, data analysis and technical details in our initial post.

    If you are the author and would prefer not to receive these comments, simply reply "Stop" to this comment.

    $0.00
      Reply

      Coin Marketplace

      STEEM 0.19
      TRX 0.12
      JST 0.028
      BTC 63764.77
      ETH 3430.37
      USDT 1.00
      SBD 2.53