Why CISA is Warning CISOs About a Breach at Sisense
Krebs on Security
|
Contributed by: Drex DeFord
Summary
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is currently investigating a security breach at Sisense, a business intelligence firm known for its dashboard product that consolidates data from various online services. In response to the breach, both CISA and Sisense have advised customers to reset all shared credentials and secrets as a precautionary measure. The breach, which was disclosed by Sisense CISO Sangram Dash, reportedly began with unauthorized access to the company's Gitlab code repository, leading to the exfiltration of several terabytes of sensitive customer data, including access tokens, email passwords, and SSL certificates, from Sisense's Amazon S3 cloud storage. The incident has highlighted the need for rigorous data protection measures, especially when handling customer information. Sisense is coordinating with its customers on mitigation steps, which include a comprehensive reset of potentially compromised digital keys and tokens across various technologies.