Rollbar

Software bug-tracking company Rollbar disclosed a data breach after unknown attackers hacked its systems in early August and gained access to customer access tokens.

The security breach was discovered by Rollbar on September 6 when reviewing data warehouse logs showing that a service account was used to log into the cloud-based bug monitoring platform.

Once inside Rollbar’s systems, the threat actors searched the company’s data for cloud credentials and Bitcoin wallets.

“When we became aware of this access we disabled the service account and began analyzing what actions had been taken by the unauthorized party,” Rollbar said in a data breach notification letter shared by Have I Been Pwned creator Troy Hunt.

“The party first tried to launch compute resources, and after that failed for lack of permission, they accessed the data warehouse and ran searches that suggested they were interested in Bitcoin wallets or other cloud credentials.”

Rollbar’s follow-up investigation found that the attackers had access to its systems for three days between August 9 and August 11, 2023.

While inside Rollbar’s servers, they accessed sensitive customer information, including usernames and email addresses, account names, and project information, such as environment names and service link configuration.

Project access tokens stolen in the breach

More importantly, customers’ project access tokens that enable them to interact with Rollbar projects were also retrieved during the incident.

The company says access tokens allowing access to Rollbar project data (with read and write scope) have been expired, while those allowing to send data to an active project will expire in 30 days.

“Although our investigation is ongoing, we hold the security of our customers data paramount and are therefore writing to promptly notify you of the discovery and the steps we have taken,” Rollbar said.

“We will also engage a third-party forensic consultant to assist us in verifying these findings, and that work is ongoing.”

Rollbar says its error logging and tracking services are being used by 400M+ application end users and thousands of companies worldwide, such as Salesforce, Twilio, Uber, Twitch, and Pizza Hut.

Last year, Rollbar said it helped over 5,000 customers and 23,000 paid users process more than 40 billion errors.

Source: www.bleepingcomputer.com