Password manager OneLogin hacked, exposing sensitive customer data
Password manager and single sign-on provider OneLogin has been hacked.
In a brief blog post, the company’s chief security officer Alvaro Hoyos said that it was aware of “unauthorized access to OneLogin data in our US data region,” and that it had reached out to customers.
Hoyos said that the company had blocked the unauthorized access after the breach and is working with law enforcement.
The blog post initially lacked detailed information about the incident, although the post had omitted that hackers had stolen sensitive customer data — a point that the company had instead only mentioned in an email sent to customers, seen by ZDNet.