Rubrik Reports 'Unauthorised Actor' Access Log Files

share
Header image

Rubrik Reports 'Unauthorised Actor' Access Log Files

share

No evidence of unauthorised access to any data or internal code.

Rubik has said that an “unauthorised actor” accessed a small number of log files in what it calls “anomalous activity on a server.”

In a statement from co-founder and CTO Arvind Nithrakashyap, and CISO Michael Mestrovich, they said the Rubrik Information Security Team recently discovered anomalous activity on a server that contained log files. “We promptly took the server offline to mitigate the risk” and an investigation confirmed that the incident was isolated to this one server.

“We found no evidence of unauthorised access to any data we secure on behalf of our customers, or our internal code.”

Unauthorised Actor

Rubrik did claim that through its investigation, it discovered that an “unauthorised actor” accessed a small number of log files, most of which contained non-sensitive information.

Whilst one file contained some limited access information, it rotated keys to mitigate any residual risk, “even though we found no evidence that access information was misused.”

The statement said: “We would like to reiterate that after a detailed analysis with the third party partner, we have found no evidence of unauthorised access to any data we secure on behalf of our customers or our internal code.

“We take the security of our customers as well as our own systems extremely seriously and while the issue has been fully mitigated, we felt it was important to be transparent about this to all our customers, partners and prospects.”

Written by
Dan Raywood
Dan Raywood

Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.

He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.

Cyber CrimeNetwork Security Published: 3 March Written by
Dan Raywood
Dan Raywood

Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.

He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.

Upcoming Events

No events found.

Related content

Cyber incident involving rerouted payment drains Zephyr of £700K

Cyber incident involving rerouted payment drains Zephyr of £700K

 Hijacked NHS Scotland domains push adult content

Hijacked NHS Scotland domains push adult content

 UK cybercrime significantly outpaces police staffing growth

UK cybercrime significantly outpaces police staffing growth
Fraud losses top £629M as UK ramps up enforcement

Fraud losses top £629M as UK ramps up enforcement

 Youth cybercrime radicalization driven by online platforms, NCA leader says

Youth cybercrime radicalization driven by online platforms, NCA leader says

 Global cybercrime clampdown disrupts over 45K illicit IP addresses

Global cybercrime clampdown disrupts over 45K illicit IP addresses
Report: UK cyberattacks grow faster than global rate

Report: UK cyberattacks grow faster than global rate