Aruba Central network monitoring platforms suffered from a data breach incident that allowed a threat actor to access collected data about monitored devices and their locations.
The exposed information contained two datasets, one for network analytics and the other for Aruba Central's 'Contract Tracing' feature.
"One dataset ("network analytics") includes network telemetry information about Wi-Fi client devices connected to customer Wi-Fi networks for the majority of Aruba Central customers.
Another dataset called "contact tracing" comprised location-specific information on Wi-Fi client devices, such as which devices were close to other Wi-Fi client devices.
The compromised information includes MAC addresses, IP addresses, device operating system type and hostname, and some usernames. The contact tracing data also included users’ Access Point (AP) name, proximity, and duration of time connected to that AP.
They said it's not necessary to change passwords, change encryption keys, or modify your network setup because security-sensitive data was not compromised.
In order to stop reoccurring problems, HPE said they are modifying how they safeguard and keep access keys.
"id": "ARU826111122",
"linkid": "aruba-a-hewlett-packard-enterprise-company",
"type": "Breach",
"date": "11/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"