The mobile forensics solutions company Cellebrite was breached by computer hackers and sensitive company data has been disclosed to technology journalists. The obtained data totals 900 GB in size and contains customer information, various databases and detailed technical information about the company's products.
Presently, it is known that the information accessed includes basic contact information of users registered for alerts or notifications on Cellebrite products and hashed passwords for users who have not yet migrated to the new system. Cellebrite is in the process of notifying affected customers and working with relevant authorities.
Jenkins, an unauthenticated remote code execution vulnerability allows attackers to transfer a serialized Java object to the Jenkins CLI, making Jenkins connect to an attacker-controlled LDAP server, which in turn can send a serialized payload leading to code execution, bypassing existing protection mechanisms.
*IP addresses provided by Recorded Future.
Want to learn about Alert Logic products in more detail? Call us direct at +1.877.484.8383, for the UK call +44 (0) 203 011 5533, or complete this form. An Alert Logic representative will contact you soon.