OneLogin, a cloud-based single sign-on and identity management service provider with over 1400 enterprise customers in 44 countries, suffered from a data breach incident.
An unauthorized user gained access to the system by compromising a OneLogin employee’s password for the system.
A bug that encrypted the data after that notes visible in the logging system and stored in the hackers database.
Source: https://blog.itgovernance.co.uk/blog/onelogin-security-breach-secure-notes-exposed
TPRM report: https://scoringcyber.rankiteo.com/company/onelogin
"id": "one1539622",
"linkid": "onelogin",
"type": "Breach",
"date": "09/2016",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Technology',
'name': 'OneLogin',
'size': 'Over 1400 enterprise customers in 44 '
'countries',
'type': 'Cloud-based single sign-on and identity '
'management service provider'}],
'attack_vector': 'Compromised Employee Password',
'description': 'OneLogin, a cloud-based single sign-on and identity '
'management service provider with over 1400 enterprise '
'customers in 44 countries, suffered from a data breach '
'incident. An unauthorized user gained access to the system by '
'compromising a OneLogin employee’s password for the system. A '
'bug that encrypted the data after that notes visible in the '
'logging system and stored in the hackers database.',
'threat_actor': 'Unauthorized User',
'title': 'OneLogin Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Weak Password/Credential Management'}