Rubrik rotates authentication keys after log server breach

Source: BleepingComputer Author: unknown URL: https://www.bleepingcomputer.com/news/security/rubrik-rotates-authentication-keys-after-log-server-breach/

ONE SENTENCE SUMMARY:

Rubrik experienced a security breach on a log file server, prompting key rotations, but found no evidence of data misuse.

MAIN POINTS:

  1. Rubrik detected unusual activity on a server hosting log files.
  2. The company immediately took the affected server offline to mitigate risks.
  3. A forensic investigation confirmed the breach was isolated to this single server.
  4. No unauthorized access to customer data or internal source code was found.
  5. Some log files contained access information, leading to a precautionary key rotation.
  6. There is no evidence that the compromised information was misused.
  7. The breach was not a ransomware attack, and no communication from threat actors was received.
  8. Rubrik has over 6,000 customers, including major corporations and institutions.
  9. The company previously suffered a data breach in 2023 due to Fortra GoAnywhere attacks.
  10. A third-party forensic partner assisted in confirming the breach’s limited scope.

TAKEAWAYS:

  1. Quick detection and response helped contain the breach.
  2. Rotating authentication keys minimized potential risks from leaked access information.
  3. No customer data or internal source code was compromised.
  4. The incident was not linked to ransomware or extortion attempts.
  5. Past security breaches highlight the ongoing cybersecurity challenges for major firms.