Turbotodd

Ruminations on IT, the digital media, and some golf thrown in for good measure.

One Login, One Hack

with one comment

Here’s a wake-up call for your Friday morning: Password manager OneLogin has been compromised.

ZDNet’s reporting that hackers now have the ability to decryp encrypted data and that all users served by US data centers are affected.

In a later update, OneLogin posted this:

“Our review has shown that a threat actor obtained access to a set of [Amazon Web Services, or AWS] keys and used them to access the AWS API from an intermediate host with another, smaller service provider in the US.”
– via ZDNet

ZDNet goes on to indicate that OneLogin “has advised customers to change their passwords, generate new API keys for their services, and create new OAuth tokens — use for logging into accounts — as well as to create new security certificates.”

If you’d like to follow recent cyberattacks by month, visit the IBM X-Force tracker here.

Written by turbotodd

June 2, 2017 at 9:23 am

Posted in 2017, cybersecurity, ibm security, passwords

«
»

One Response

Subscribe to comments with RSS.

  1. A regular 3G Verizon version of the phone likewise isn’t strictly ruled out, there’s simply no tough proof for it either.

    triciadevine3

    June 23, 2017 at 1:57 pm

    Reply

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Cancel

Connecting to %s

%d bloggers like this: