OneLogin by One Identity

OneLogin by One Identity

The OneLogin firm declared that it had found evidence of unauthorised access to its US-based systems.

After a review by the organisation, it was determined that a threat actor had access to a set of AWS keys and had utilised them to access the AWS API through an intermediary host that was hosted by a different, smaller US service provider.

Regarding the weaknesses that hackers used to gain access to the organisation, nothing is known.

OneLogin attested to the encryption of the data, but it also noted that threat actors may still be able to decrypt it.

Source: https://securityaffairs.com/59653/data-breach/onelogin-data-breach.html

"id": "ONE102261123",
"linkid": "onelogin",
"type": "Breach",
"date": "06/2017",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.