Tuesday, July 23, 2024

OneLogin Password Manager databse Hacked Users’ Credentials May be Decrypted

One login is a Cloud-based Password Manager which concedes a remarkable data breach, the attacker’s steal client’s credentials.

A password manager helps with creating, putting away, and recovering complex passwords from a scrambled database.Types of password managers incorporate locally installed programming applications, online administrations that are gotten to through web-based interfaces, locally accessed hardware devices that fill in as keys.
Are you using the onelogin password manager?, Need to Change your passwords immediately.

They announced, “recently we detected that a malicious actor had obtained access to our US operating region.”

Attack method

From Onelogin Blog post they recognize the threat actor obtained access to a set of AWS keys and used them to access the AWS API from an intermediate host with another, smaller service provider in the US.

The attack originated around  May 31, 2017, around 2 am PST.

Alvaro Hoyos CISO of OneLogin’s says Through the AWS API, the actor created several instances in our infrastructure to do reconnaissance. The onelogin staff was alerted of unusual database activity around 9 am PST and within minutes shut down the affected instance as well as the AWS keys that were used to create it.

Customer Impact

The threat actor could get to database tables that contain data about clients, applications, and different sorts of keys.

At this time they are not able to assure that the attacker can decrypt the stolen data.

OneLogin’s investigation is ongoing and is aided by independent third-party security experts, as well as law enforcement. We will update this when there is more information we can share, as appropriate. We thank you again for your continued support. says Hoyos.

Also read


Latest articles

SonicOS IPSec VPN Vulnerability Let Attackers Cause Dos Condition

SonicWall has disclosed a critical heap-based buffer overflow vulnerability in its SonicOS IPSec VPN....

Hackers Registered 500k+ Domains Using Algorithms For Extensive Cyber Attack

Hackers often register new domains for phishing attacks, spreading malware, and other deceitful activities. Such...

Hackers Claim Breach of Daikin: 40 GB of Confidential Data Exposed

Daikin, the world's largest air conditioner manufacturer, has become the latest target of the...

Emojis Are To Express Emotions, But CyberCriminals For Attacks

There are 3,664 emojis that can be used to express emotions, ideas, or objects...

Beware Of Fake Browser Updates That Installs Malicious BOINC Infrastructre

SocGholish malware, also known as FakeUpdates, has exhibited new behavior since July 4th, 2024,...

Data Breach Increases by Over 1,000% Annually

The Identity Theft Resource Center® (ITRC), a nationally recognized nonprofit organization established to support...

UK Police Arrested 17-year-old Boy Responsible for MGM Resorts Hack

UK police have arrested a 17-year-old boy from Walsall in connection with a notorious...
Guru baran
Guru baranhttps://gbhackers.com
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Free Webinar

Low Rate DDoS Attack

9 of 10 sites on the AppTrana network have faced a DDoS attack in the last 30 days.
Some DDoS attacks could readily be blocked by rate-limiting, IP reputation checks and other basic mitigation methods.
More than 50% of the DDoS attacks are employing botnets to send slow DDoS attacks where millions of IPs are being employed to send one or two requests per minute..
Key takeaways include:

  • The mechanics of a low-DDoS attack
  • Fundamentals of behavioural AI and rate-limiting
  • Surgical mitigation actions to minimize false positives
  • Role of managed services in DDoS monitoring

Related Articles