Everbridge, an American software program firm centered on disaster administration and public warning options, notified prospects that unknown attackers had accessed information containing enterprise and person information in a current company methods breach.
The corporate supplies public warning, disaster administration, and threat intelligence companies to over 6,500 prospects worldwide, together with the U.S. Military, the Hartsfield-Jackson Atlanta Worldwide Airport, and the international locations of Norway and Australia, amongst others.
The attackers had been detected on the corporate’s community final Tuesday, Could 21. They breached Everbridge’s company methods utilizing info collected in a earlier phishing assault concentrating on a few of its workers.
Jeff Younger, Everbridge’s Vice President of Company Communications, informed BleepingComputer that no proof signifies a ransomware assault and that the corporate promptly notified related legislation enforcement businesses of the incident.
“Whereas our investigation is ongoing and in its early phases, we’re conscious that the unauthorized occasion answerable for this exercise has accessed a restricted variety of information on our company community containing sure enterprise associated information, together with cases of admin person and restricted different customers’ contact info, details about the subscribed Everbridge companies, and enabled entry strategies,” the corporate informed prospects in a breach notification seen by BleepingComputer.
A supply near the investigation informed BleepingComputer that buyer info was uncovered within the company information accessed by the risk actors, and people impacted are being notified.
The identical supply mentioned that Everbridge is working with incident response consultants from Mandiant and Stroz Friedberg to evaluate the assault’s severity and affect.
MFA required on all accounts by June 3
Given the growing threat of phishing assaults, Everbridge additionally shared info with every account administrator on the right way to establish and guard in opposition to such assaults and urged prospects to allow multi-factor authentication (MFA). This extra layer of safety can even be force-enabled on all accounts by Monday.
“We strongly encourage all prospects to allow MFA on all administrator accounts, and we can be accelerating enforcement of MFA for all prospects within the coming days,” the corporate mentioned.
“Everbridge will allow multi-factor authentication (MFA) for all accounts by June 3, 2024. In case your group helps Single Signal-On (SSO), we strongly advocate you allow SSO in your Everbridge login as quickly as potential.”
Everbridge started working in 2002 as 3N World and went public in 2016 on the Nasdaq inventory alternate following a $90 million IPO. In 2023, it reported revenues of $449 million and now has greater than 1,800 workers.
The corporate says it supplies public warning, disaster administration, and threat intelligence companies to over 6,500 prospects worldwide, together with the U.S. Military, the Hartsfield-Jackson Atlanta Worldwide Airport, and the international locations of Norway and Australia, amongst others.
Funding large Thoma Bravo agreed to take Everbridge personal on March 1, 2024, in a $1.8 billion all-cash deal.