Sumo Logic, a leading security and data analytics company, recently revealed a security breach that occurred when their AWS (Amazon Web Services) account was compromised. The breach was detected on November 3rd, and it was determined that an unauthorized individual gained access using stolen credentials.
Fortunately, Sumo Logic reported that their systems and networks remained unaffected during the breach, and all customer data was secure, as it remained encrypted. In response to the breach, the company swiftly took action by locking down the exposed infrastructure and rotating potentially compromised credentials as a precautionary measure. Additionally, they launched a thorough investigation to understand the origin and scope of the incident, bolstering security measures to prevent future breaches through enhanced monitoring and vulnerability mitigation.
Furthermore, Sumo Logic has also advised its customers to take immediate action to enhance their security by rotating API access keys and resetting various credentials used for accessing Sumo Logic’s services. This includes Sumo Logic installed collector credentials, third-party credentials used for data collection, and user passwords for Sumo Logic accounts.
The company remains dedicated to ensuring a safe and secure digital experience for its customers and has promised to directly notify them if any evidence of malicious access to their accounts is discovered. Customers can access updates and information related to the incident at Sumo Logic’s Security Response Center.
Sumo Logic operates a cloud-native SaaS analytics platform, offering services such as log analytics, infrastructure monitoring, and cloud infrastructure security to its customers. In May, the company was acquired by private equity firm Francisco Partners for $1.7 billion. Sumo Logic boasts an impressive customer list, including well-known tech companies like Samsung, Okta, SAP, F5, Airbnb, SEGA, 23andme, Toyota, and more. The security breach and the company’s swift and transparent response underscore the importance of robust security measures in an increasingly digital world.
