CISA urges Sisense customers to reset credentials after breach and compromise of customer data.

On Wednesday, April 11 2024, the Cybersecurity and Infrastructure Security Agency (CISA) released an advisory warning of a data breach and compromise of customer data at Sisense. Sisense is a a company that provides data analytics services with over 1000 customers. Krebs on Security reports that the compromise may have started by attackers accessing Sisense’s Github repository and using stolen tokens to access the company’s S3 bucket. The article states that a statement was made by the company, stating:

Sisense Chief Information Security Officer Sangram Dash told customers the company had been made aware of reports that “certain Sisense company information may have been made available on what we have been advised is a restricted access server (not generally available on the internet.)”

In their advisory, CISA urged Sisense customers to reset any credentials and secrets used to access Sisense services, and to be on the alert for any suspicious activity using compromised credentials.