US cybersecurity agency CISA is warning Sisense customers to reset their credentials and secrets after the data analytics firm reported a security incident.
In brief statement on ThursdayCISA said it was responding to a “recent settlement” by Sisense, which provides business intelligence and data analytics to companies around the world.
CISA urged Sisense customers to “restore credentials and secrets that may be exposed or used to access Sisense services” and to report any suspicious activity involving the use of compromised credentials to the service.
The exact nature of the cyber incident is not yet clear.
Founded in 2004, Sisense develops business intelligence and data analytics software for large companies, including telecommunications, airlines and technology giants. Sisense’s technology enables organizations to collect, analyze and visualize large amounts of their enterprise data by tapping directly into their existing technologies and cloud systems.
Companies like Sisense rely on the use of credentials, such as passwords and private keys, to access a customer’s various data stores for analysis. With access to these credentials, an attacker could potentially gain access to a customer’s data as well.
CISA said it was “taking an active role in working with private industry partners to respond to this incident, especially as it relates to affected organizations in the critical infrastructure sector”.
Sisense counts Air Canada, PagerDuty, Philips Healthcare, Skullcandy and Verizon as customers, as well as thousands of other organizations worldwide.
The news of the incident became known the following Wednesday Cybersecurity reporter Brian Krebs posted a memo was sent by Sisense Chief Information Security Officer Sangram Dash, urging customers to “swap any credentials you use in the Sisense app.”
Neither Dash nor a Sisense representative responded to an email seeking comment.
Israeli media reported in January that Sisense had laid off about half of its employees by 2022. It is unclear whether the layoffs affected the company’s security posture. Sisense has received nearly $300 million in funding from investors that include Insight Partners, Bessemer Ventures Partners and Battery Ventures.
Know more about the Sisense breach? To contact this reporter, please contact Signal and WhatsApp at +1 646-755-8849 or via email. You can also send files and documents via SecureDrop.
