> As part of our response to this incident, we did our own search through the compromised data to look for tokens or passwords and found 104 Cloudflare API tokens. We have identified no suspicious activity associated with those tokens, but all of these have been rotated in an abundance of caution. All customers whose data was compromised in this breach have been informed directly by Cloudflare.
Great response
> We are responsible for the choice of tools we use in support of our business. This breach has let our customers down. For that, we sincerely apologize. The rest of this blog gives a detailed timeline and detailed information on how we investigated this breach.
And a mea culpa for their 3rd party vendor choices (impressive)
I got this notification (email subject "[ACTION REQUIRED] Third-Party Compromise Impacting Cloudflare Salesforce Cases"), but, as I'm a free user, I don't even have a 'Technical Support' option under the 'Support' menu dropdown.
Is anyone aware of the other services using Salesloft Drift that were breached? Cloudflare is the first I've had reach out, but surely there were others.
They saved others, but they couldn’t save themselves.[1]
Important to remember that security practitioners and vendors are actually on the same team when it comes to criminal behavior, and maybe it’s better to treat others with grace.
It would be nice if they actually TOLD us their recommendations with the exact actions to take to protect our accounts. This is just a blanket statement that is going to result in confusion as to what "action" there is to take.
7 comments
[ 2.6 ms ] story [ 27.1 ms ] threadGreat response
> We are responsible for the choice of tools we use in support of our business. This breach has let our customers down. For that, we sincerely apologize. The rest of this blog gives a detailed timeline and detailed information on how we investigated this breach.
And a mea culpa for their 3rd party vendor choices (impressive)
Have other free users also received this email?
Important to remember that security practitioners and vendors are actually on the same team when it comes to criminal behavior, and maybe it’s better to treat others with grace.
1: https://blog.cloudflare.com/how-cloudflare-mitigated-yet-ano...
Does anyone have an action plan yet?