The US cybersecurity agency CISA has issued a warning to Sisense customers, advising them to reset their credentials and secrets due to a reported security incident by the data analytics company.
In response to a recent security breach at Sisense, a global provider of business intelligence and data analytics solutions, CISA released a statement on Thursday.
The Cybersecurity and Infrastructure Security Agency (CISA) has advised Sisense customers to reset their credentials and secrets that may have been exposed or used to access Sisense services. The agency has also urged customers to report any suspicious activity associated with compromised credentials.
At this time, the specific details of the cybersecurity incident remain uncertain.
Established in 2004, Sisense specializes in creating business intelligence and data analytics software for large corporations, such as telecommunications companies, airlines, and technology giants. With Sisense’s cutting-edge technology, organizations can effortlessly collect, analyze, and visualize vast amounts of their corporate data. By seamlessly integrating with their existing technologies and cloud systems, Sisense empowers businesses to make the most of their data.
Companies like Sisense rely on credentials, such as passwords and private keys, to gain access to a customer’s various data repositories for analysis purposes. If someone gains access to these credentials, they could potentially also gain access to a customer’s data.
In order to address this incident, CISA pledged to work closely with private industry partners, especially in relation to the affected critical infrastructure sector organizations.
Sisense has a diverse range of customers, including Air Canada, PagerDuty, Philips Healthcare, Skullcandy, and Verizon, along with numerous other organizations worldwide.
Cybersecurity journalist Brian Krebs first reported the incident on Wednesday, sharing a message from Sisense Chief Information Security Officer Sangram Dash advising customers to update their credentials used in the Sisense application.
After sending an email seeking comment, Dash or a Sisense spokesperson did not respond.
In January, Israeli media outlets reported that Sisense had reduced its workforce by approximately 50% since 2022. It is uncertain whether the layoffs had any effect on the company’s security stance. Sisense has raised nearly $300 million in funding from investors such as Insight Partners, Bessemer Venture Partners, and Battery Ventures.
