Atlassian recently suffered a data leak which affected thousands of employee records as well as the building floorplans for their Sydney and San Francisco offices. The employee records include email addresses, phone numbers and names. The threat actors gained entry to Atlassian’s systems via a third-party provider named envoy. It was initially thought that Envoy had suffered a security breach. However, it was later determined that access through Envoy was done through an employee’s credentials being mistakenly published to a public repository. Atlassian has reassured that no product or customer data were assessed during this incident.
This segment was created for the It’s 5:05 podcast