OneLogin hit by major data breach

Initially the company provided few details, other than disclosing the fact that there was an unauthorized access to OneLogin customer data.

"We detected unauthorised access to OneLogin data in our U.S. operating region".

OneLogin, a company that offers to secure authentication and identity management services to businesses, has warned customers of a security breach that could have spilt their corporate passwords to hackers. OneLogin was not alerted to the unusual database activity generated by the attacker until around 9:00 a.m. PST, but the breach was shut down within minutes afterward.

Affected OneLogin users can visit this page for a handy 11-step guide to securing your data, if that's possible, or read through it over at El Reg.

After repeating much of the same information included in the public statement, the email linked to a support page that users can only view after logging into their OneLogin account.


The severity of the breach to consumers is not yet known but the company has stated that the hack allowed the threat actor to access database tables that contain personal information about users, apps, and various types of keys.

Published reports, however, say OneLogin informed customers that the hackers indeed got that capability.

As of 2013, OneLogin boasted 12 million users across 700 companies, and those numbers have likely grown significantly in the last few years. Law enforcement and third-party security experts are now working with OneLogin to investigate the scope of the hack and identify the guilty parties involved.

Making the attack against OneLogin more risky and potentially much more damaging is Hoyos's statement that while the company applies encryption to sensitive data, there remains the possibility that the hacker was able to obtain the ability to decrypt the stolen data. "We are thus erring on the side of caution and recommending actions our customers should take, which we have already communicated to our customers", Hoyos wrote. The password service then unlocks other accounts as needed.

The attack occurred on May 31 around 2am PST (09:00 GMT), according to OneLogin. This isn't the first time OneLogin has been targeted as it also detected unauthorized access back in August 2016.


Popular
  • Donald Trump Appears to Shove Prime Minister Dusko Markovic at NATO Meeting

    Stoltenberg said later that Trump, Vice President Mike Pence and other US officials have stated clearly their assurances. White House spokesman Sean Spicer told reporters later that Trump is "fully committed" to the collective defense.
    New Sonic Mania Trailer: Release Date Announced!

    New Sonic Mania Trailer: Release Date Announced!

    Sonic , Tails and Knuckles will all be playable in the game, and each one of them comes with their own unique abilities. I love the stencil art style and the animation reminds me a lot of Sonic CD (my favorite Sonic game).
    British police arrest 14th man in Manchester bombing inquiry

    British police arrest 14th man in Manchester bombing inquiry

    The country remains on high alert, however, as officials caution that some suspects who helped Abedi may still be at large. Great Manchester Police said a 23-year-old man was arrested Monday in Shoreham-by-Sea on suspicion of terrorism offenses.
  • Turkey says US arming of Syrian Kurdish militia 'extremely dangerous'

    Turkey says US arming of Syrian Kurdish militia 'extremely dangerous'

    The office added that the clashes between their fighters and Turkey-backed Ahrar al-Sham continued until the midnight on Wednesday.
    McConnell faces a challenge passing health care in Senate

    McConnell faces a challenge passing health care in Senate

    The House proposal also repeals a sales tax on certain manufacturing machinery and would create new business-related tax breaks. In his tweet , Trump didn't differentiate between tax cuts and a broader tax reform package.
    US President promises not to forget Papal message

    US President promises not to forget Papal message

    Despite her husband being inaugurated U.S. president in January, she is not due to move into the White House until the summer. They then posed for photographs and then sat down at the papal desk, the pope unsmiling, as their private meeting began.
  • Delay in court case deepens health insurance uncertainty

    Delay in court case deepens health insurance uncertainty

    Under former Speaker John Boehner, House Republicans sued the Obama administration to prevent it from doling out the subsidies. According to the motion, legislators and the administration are still working on ways to avoid a legal ruling on the case.
    In South Africa Cape Town region declares drought disaster

    In South Africa Cape Town region declares drought disaster

    Hydrological disasters were declared in Prince Albert, Witzenberg and Oudtshoorn. The province assured the public that the declaration was not cause to panic.

    Take care fasting during long Ramadan month

    This is believed to have occurred on the 27th night of of the month, known as Laylat-ul-Qadr (Night of Power). Chinese visitor spend increased 81 per cent year-on-year, while U.S. tourist spend shot up 56 per cent.
  • Fitbit, Inc. (NYSE:FIT) showed monthly volitility of 4.48%

    In related news, EVP Andy Missan sold 50,000 shares of the business's stock in a transaction that occurred on Tuesday, March 7th. The Average Volume of the company is 3.23 Million, while the Volume of the company in the last trading session was 4.65 Billion.

    Kushner sought secret communications with Russia

    The newspaper cited anonymous US officials who were briefed on intelligence reports on intercepted Russian communications. He remains an influential confidant within the White House as does his wife, Ivanka Trump.
    James passes Jordan, Cavs back in Finals with 135-102 win

    James passes Jordan, Cavs back in Finals with 135-102 win

    CLEVELAND (AP) - LeBron James' frustrating night kept going after one of the worst playoff games of his splendid career. But the Celtics have the No. 1 pick in the draft, along with the salary cap space to sign a top free agent.

CONNECT