• chevron_right

      Security firm Rubrik is latest to be felled by GoAnywhere vulnerability

      news.movim.eu / ArsTechnica · Wednesday, 15 March, 2023 - 21:42

    Security firm Rubrik is latest to be felled by GoAnywhere vulnerability

    Enlarge (credit: Getty Images)

    Rubrik, the Silicon Valley data security company, said that it experienced a network intrusion made possible by a zero-day vulnerability in a product it used called GoAnywhere.

    In an advisory posted on Tuesday, Rubrik CISO Michael Mestrovich said an investigation into the breach found that the intruders gained access to mainly internal sales information, including company names and contact information, and a limited number of purchase orders from Rubrik distributors. The investigation, which was aided by an unnamed third-party company, concluded there was no exposure of sensitive information such as Social Security numbers, financial account numbers, or payment card data.

    Tight-lipped

    “We detected unauthorized access to a limited amount of information in one of our non-production IT testing environments as a result of the GoAnywhere vulnerability,” Mestrovich wrote. “Importantly, based on our current investigation, being conducted with the assistance of third-party forensics experts, the unauthorized access did NOT include any data we secure on behalf of our customers via any Rubrik products.”

    Read 8 remaining paragraphs | Comments

    • chevron_right

      Uber was breached to its core, purportedly by an 18-year-old. Here’s what’s known

      news.movim.eu / ArsTechnica · Friday, 16 September, 2022 - 17:29 · 1 minute

    Uber app being used on a smartphone

    Enlarge / The Uber ride-sharing app is seen on a mobile phone. (credit: Jaap Arriens/NurPhoto via Getty Images )

    Uber employees on Thursday discovered that huge swaths of their internal network had been accessed by someone who announced the feat on the company Slack channel. The intruder, who sent screenshots documenting the breach to The New York Times and security researchers, claimed to be 18 years old and was unusually forthcoming about how it occurred and just how far it reached, according to the news outlet, which broke the story .

    It didn’t take long for independent researchers, including Bill Demirkapi of Microsoft , to confirm The New York Times coverage and conclude that the intruder likely gained initial access by contacting an Uber employee over WhatsApp.

    After successfully obtaining the employee’s account password, the hacker tricked the employee into approving a push notification for multifactor authentication. The intruder then uncovered administrative credentials that gave access to some of Uber’s crown-jewel network resources. Uber responded by shutting down parts of its internal network while it investigates the extent of the breach.

    Read 15 remaining paragraphs | Comments