[ad_1]
Ed. word: This story has been up to date to incorporate an announcement from Envoy supplied to Darkish Studying in regards to the incident.A risk group referred to as SiegedSec lately posted a cache of worker and operations data allegedly stolen from software program workforce collaboration software supplier Atlassian. Now Atlassian, greatest identified for its Trello, Jira, and Confluence manufacturers, is reassuring its prospects their knowledge is safe, and in response to stories, defined {that a} third-party app was breached, compromising worker knowledge together with names, emails, departments, and flooring plans of segments of Atlassian workplaces positioned in San Francisco, Calif., and Sydney, Australia. “On February 15, 2023 we discovered that knowledge from Envoy, a third-party app that Atlassian makes use of to coordinate in-office assets, was compromised and revealed,” an Atlassian spokesperson instructed CyberScoop. “Atlassian product and buyer knowledge is just not accessible through the Envoy app and subsequently not in danger.”The corporate assertion added there may be an ongoing investigation into the breach. Envoy says the breach doubtless occurred because of the risk actor having access to worker credentials. “We’re investigating this proper now and are usually not conscious of any compromise to our programs,” an Envoy spokesperson mentioned in an announcement emailed supplied to Darkish Studying. “Our preliminary analysis reveals {that a} hacker gained entry to an Atlassian worker’s legitimate credentials to pivot and entry the Atlassian worker listing and workplace flooring plans held inside Envoy’s app.”Sustain with the most recent cybersecurity threats, newly-discovered vulnerabilities, knowledge breach data, and rising tendencies. Delivered every day or weekly proper to your electronic mail inbox.Subscribe
[ad_2]