HQ/EMEAFind out how we can help your business
Sumo Logic, a renowned security and data analytics company, has recently announced a breach in their company after an attacker compromised its Amazon Web Services (AWS) last week.
The announcement came to light earlier this month when they revealed that an attacker had successfully infiltrated Sumo Logic’s AWS account using stolen credentials. Fortunately, the company quickly reassured its customers that their systems and networks remained uncompromised during the cyberattack.
The company also insisted that they still control the customer data. Nonetheless, the severity of the situation prompted them to take immediate action.
After discovering the attack, Sumo Logic allegedly isolated the affected part of their system.
Reports claimed Sumo Logic addressed the situation by locking down the exposed infrastructure and rotating every potentially exposed credential. Moreover, the company is investigating the breach’s origin and extent.
In response, the company implemented additional security measures, which include enhanced monitoring and addressing potential vulnerabilities to prevent similar incidents in the future.
On the other hand, they have issued a crucial advisory for the benefit of their customers. The advisory urges its customers to return their API access keys. In addition, the affected company has advised its customers to turn in their credentials to access its services and any certificates shared with Sumo Logic for accessing other systems.
The list of items that the company will reset as a precautionary measure includes Sumo Logic installed collector credentials, third-party credentials stored with Sumo Logic for data collection by the hosted collector (e.g., credentials for S3 access), third-party credentials stored with the affected company as part of the webhook connection configuration, and user passwords to user accounts.
Despite the ongoing investigation, the company promised to be committed to ensuring its customers a safe and secure digital experience. The company also assured everyone they would inform their customers once they found new details about the breach.
Sumo Logic, a pioneer in cloud-native SaaS analytics, provides customers with comprehensive services, including log analytics, infrastructure monitoring, and cloud infrastructure security. Unfortunately, this incident will damage its reputation since it proudly presents itself as a secure data analytics company.
