Entrust Hit By Early Summer Cyber Attack


Entrust, the cybersecurity giant based out of Minneapolis has disclosed the fact that it was hit by a sizable cyberattack in June of 2022.

A global leader in identities, payments and data protection, Entrust had parts of its system accessed by an unauthorised party focused on their internal operations. The attack took place on June 18th.

Investigation

Entrust began a prompt investigation partnered with a leading third-party cybersecurity firm and immediately informed the authorities and local law enforcement. Whilst an extensive investigation is still ongoing, there was no indication that the discovered issue further affects operations or security of Entrust’s products or services.

Both products and services run in separate, air-gapped environments from their internal systems and all are fully operational at this time.

Cybersecurity researcher Dominic Alvieri obtained and published a July 6th notice that was sent to Entrust customers to inform them that some files were taken from the internal systems and that they would be contacted directly if any information uncovered would affect the security of the products and services the organization provides.

No Information from Company

Entrust declined to confirm any stolen data or its type, and does not confirm that the intrusion was the result of ransomware, nor has the ransomware gang claimed any responsibility for the attack.

Entrust has a stated customer base of over 10,000 customers – according to its website – including Microsoft, VMware and numerous government agencies including the Department of Homeland Security and the Treasury.

Among the Rest

Whilst this is extremely hurtful for any cybersecurity firm facing their data security incident, the first cybersecurity giant to be hit is not Entrust.

That dubious honour would fall on Okta, the authentication giant who, back in March 2022, had 366 customers – 2.5% of their overall customer base – heavily impacted by a security breach that opened the floodgates for cyber hackers being able to access the company internal network.

Entrust is not even the second to be hit, as that falls to cybersecurity insurance giant CNA after they were hit by ransomware back in 2020, paying upwards of $40 million to regain control of its network according to insiders.

The breach that occurred has been deemed less important than how the company has performed during the stressful period for them, choosing not to publicly acknowledge the attack, and making no mention of it on their blog or Twitter feed – which has remained quiet since the day before the attack.

For more information on risk management events and any upcoming cybersecurity conference, check out the coming events from Whitehall Media.