Online identity management software company, Onelogin this week announced that it had suffered a data breach.
The firm said that its working with law enforcement and a private security firm to investigate the incident, warned its customers about the breach in an email on Wednesday. The company said that a malicious actor had compromised customer data in their U.S. region and a support page accessible to only Onelogin customers posted on pastebin says the breach also allowed the hackers "including the ability decrypt encrypted data."
Also Read: ShadowBrokers, Leakers of WannaCry SMB Exploit threatens more leaks
A blog post from the company's chief information security officer, Alvaro Hoyos said; "We have since blocked this unauthorized access, reported the matter to law enforcement, and are working with an independent security firm to determine how the unauthorized access happened and the verify the extent of the impact of this incident," he wrote.
The company later notified users on Thursday in an updated blog post that "the actor was able to access database tables on the incident, saying that contain information about users, apps, and various types of keys," Hoyo said.
The Chief security officer went on to say that the "threat actor obtained access to a set of AWS keys and used them to access the AWS API from an intermediate host with another, smaller service provider in the U.S."
Although the company has offered little information on the breach impact, the company said it has notified affected customers and given them steps to help protect themselves.
Also Read: Court orders hacker to pay over $300,000 for website defacement and database breach of former employer