10 Aug Next-Gen EDR Security Firm Allegedly Leaked Massive Client Data
News last Wednesday reported that Carbon Black, a next-gen security company providing endpoint detection and response (EDR) tools, has exposed terabytes of sensitive client data on multiscanner services.
According to security firm DirectDefense, the leak is related to Carbon Black’s API key, an anti-malware next-gen EDR tool.
It dates back to 2016 when DirectDefense investigated a suspected malware in the cloud-based multiscanner. The security team searched for similar codes uploaded by the API key, and recovered terabytes worth of data.
Upon investigation, most of the data consists of sensitive files from Fortune 1000 companies. Included were Amazon Web Services, Apple Store ID, financial models, and consumer data.
DirectDefense suspects other EDR firms might also be leaking clients’ information in a similar method.
A Carbon Black member called out DirectDefense for irresponsibly disclosing the information, claiming their company was aware of the issue. However, DirectDefense responded by saying they stand by their team’s findings.