Everbridge, an American software program firm centered on disaster administration and public warning options, notified clients that unknown attackers had accessed recordsdata containing enterprise and consumer information in a current company programs breach.
The corporate offers public warning, disaster administration, and threat intelligence companies to over 6,500 clients worldwide, together with the U.S. Military, the Hartsfield-Jackson Atlanta Worldwide Airport, and the international locations of Norway and Australia, amongst others.
The attackers had been detected on the corporate’s community final Tuesday, Might 21. They breached Everbridge’s company programs utilizing data collected in a earlier phishing assault concentrating on a few of its workers.
Jeff Younger, Everbridge’s Vice President of Company Communications, advised BleepingComputer that no proof signifies a ransomware assault and that the corporate promptly notified related legislation enforcement businesses of the incident.
“While our investigation is ongoing and in its early stages, we are aware that the unauthorized party responsible for this activity has accessed a limited number of files on our corporate network containing certain business related data, including instances of admin user and limited other users’ contact information, information about the subscribed Everbridge services, and enabled access methods,” the corporate advised clients in a breach notification seen by BleepingComputer.
A supply near the investigation advised BleepingComputer that buyer data was uncovered within the company information accessed by the risk actors, and people impacted are being notified.
The identical supply stated that Everbridge is working with incident response specialists from Mandiant and Stroz Friedberg to evaluate the assault’s severity and impression.
MFA required on all accounts by June 3
Given the growing threat of phishing assaults, Everbridge additionally shared data with every account administrator on how one can determine and guard in opposition to such assaults and urged clients to allow multi-factor authentication (MFA). This extra layer of safety may also be force-enabled on all accounts by Monday.
“We strongly encourage all customers to enable MFA on all administrator accounts, and we will be accelerating enforcement of MFA for all customers in the coming days,” the corporate stated.
“Everbridge will enable multi-factor authentication (MFA) for all accounts by June 3, 2024. If your organization supports Single Sign-On (SSO), we strongly recommend you enable SSO for your Everbridge login as soon as possible.”
Everbridge started working in 2002 as 3N World and went public in 2016 on the Nasdaq inventory trade following a $90 million IPO. In 2023, it reported revenues of $449 million and now has greater than 1,800 workers.
The corporate says it offers public warning, disaster administration, and threat intelligence companies to over 6,500 clients worldwide, together with the U.S. Military, the Hartsfield-Jackson Atlanta Worldwide Airport, and the international locations of Norway and Australia, amongst others.
Funding large Thoma Bravo agreed to take Everbridge personal on March 1, 2024, in a $1.8 billion all-cash deal.