Advisory: Sisense Data Breach

Zurück zur Übersicht der Sicherheitshinweise
Informational
CVE(s)
Updated:
Produkt(e)
Sophos Central
Veröffentlichungs-ID sophos-sa-20240415-sisense-data-breach
Artikelversion 1
Erstveröffentlichung
Provisorische Lösung No

Overview

On Thursday, April 11, 2024, the US Cybersecurity and Infrastructure Agency (CISA) published an alert regarding the Compromise of Sisense Customer Data where they recommend customers reset credentials and secrets used in Sisense cloud services and to investigate any suspicious activity.

Sophos leverages the self-hosted version of Sisense Fusion in its Threat Analysis Center and Sophos Central customizable dashboards, which have been integrated with the minimum privileges possible. In addition, through our own detailed investigation of logs, we have not discovered any suspicious activity or compromise of Sophos or Sophos customer data. Sophos continues to monitor and validate that customers are not affected.

We will update this advisory if we discover any new information.

Related Information