Rollbar might be good at tracking bugs, uninvited guests not so much

Trending 1 week ago
  1. Home
  2. Cyber Crime
  3. Rollbar might be good at tracking bugs, uninvited guests not so much

Cloud-based bug search and monitoring level Rollbar has warned users that attackers person rifled done their data.

Troy Hunt, creator of nan Have I Been Pwned site, posted a message from Rollbar CEO Brian Rue confirming nan breach and nan actions taken by nan institution upon its discovery.

According to nan post, Rollbar noticed thing amiss successful its information storage query logs connected September 6. Further study showed that miscreants had been successful nan strategy betwixt August 9 and 11. The first onslaught vector was a unreality level work relationship that only had entree to nan information warehouse.

Rollbar noted that nan attackers first tried to occurrence up compute resources – commonly utilized by criminals to excavation Bitcoin aliases motorboat different attacks – and erstwhile that grounded owed to a deficiency of permission, nan attackers began hunting done nan information warehouse.

The target appeared to beryllium Bitcoin wallets aliases different unreality credentials. However, nan cyber baddies could besides entree relationship information, including usernames and email addresses, relationship names and task information.

  • Airbus suffers information leak turbulence to cybercrooks' delight
  • Cloud infrastructure information is having an personality crisis. Can CIEM help?
  • Capita people action: 2,000 folks affected by information theft motion up
  • Ransomware onslaught hits Sri Lanka government, causing information loss

As good arsenic notifying users, Rollbar has besides expired task entree tokens pinch "read" aliases "write" scope – these could let entree to task information and will expire entree tokens pinch "post_server_item" scope successful 30 days. While nan second tokens do not licence information to beryllium read, they could let information to beryllium sent into a project.

Rollbar claims to person 400 cardinal monthly progressive exertion extremity users covered. It besides claims to person caught complete 1 cardinal unsocial errors and processes 150 cardinal occurrences daily. Its customers see Salesforce and Duolingo.

The Register has contacted Rollbar for further remark and will update should immoderate beryllium forthcoming.

There was nary denotation of really attackers gained entree to nan unreality level work account, only nan actions taken erstwhile Rollbar became alert of nan nefarious activity wrong its information warehouse.

A spread of astir a period betwixt nan intrusion and Rollbar becoming alert of it is worrying but not unusual. It is an parameter of nan issues faced by enterprises erstwhile spotting malicious behavior. ®

Related Article

US govt IT help desk techie 'leaked top secrets' to foreign nation

US govt IT help desk techie 'leaked top secrets' to foreign nation

3 days ago
TransUnion reckons big dump of stolen customer data came from someone else

TransUnion reckons big dump of stolen customer data came from someone else

3 days ago
Feds raise alarm over Snatch ransomware as extortion crew brags of Veterans Affairs hit

Feds raise alarm over Snatch ransomware as extortion crew brags of Veterans Affairs hit

4 days ago
International Criminal Court hit in cyber-attack amid Russia war crimes probe

International Criminal Court hit in cyber-attack amid Russia war crimes probe

4 days ago
Pot calls the kettle hack as China claims Uncle Sam did digital sneak peek first

Pot calls the kettle hack as China claims Uncle Sam did digital sneak peek first

5 days ago
Robocall scammers sentenced in US after netting $1.2M via India-based call centers

Robocall scammers sentenced in US after netting $1.2M via India-based call centers

5 days ago

Popular Article

Ransomware attack hits Sri Lanka government, causing data loss

Ransomware attack hits Sri Lanka government, causing data loss

1 week ago
Mesothelioma lawyers near me

Mesothelioma lawyers near me

6 days ago
Morgan Stanley values Tesla's super-hyped supercomputer at up to $500B

Morgan Stanley values Tesla's super-hyped supercomputer at up to $500B

1 week ago
Google thinks $20M ought to be enough to figure out how or if AI can be used responsibly

Google thinks $20M ought to be enough to figure out how or if AI can be used responsibly

1 week ago
Arm IPO to kick off today with company valued at $54.5 billion

Arm IPO to kick off today with company valued at $54.5 billion

1 week ago
MGM Resorts shuts down website, computer systems after 'cybersecurity incident'

MGM Resorts shuts down website, computer systems after 'cybersecurity incident'

1 week ago
English (US) English (US) · Indonesian (ID) Indonesian (ID) ·
Terms & Conditions · Disclaimers · DMCA · Privacy Policy ·

©2023 1BIGTENT.
All Rights Reserved.