Cybersecurity company Rubrik reports data breach, rotates authentication keys

Rubrik, a cybersecurity company specializing in data protection, backup, and recovery solutions is reporting a security incident affecting one of its servers. 

The company detected unusual activity on a server that contained log files and took the server offline to mitigate potential risks. The company engaged a third-party forensic partner to conduct an investigation, which confirmed that the incident was isolated to a single server.

The company reports that small number of log files contained access information, prompting Rubrik to rotate authentication keys. Rubrik claims that there are no indications this information was misused by any threat actors and that there is no evidence of compromise of customer data or source code.

Rubrik confirmed that the breach was not a ransomware incident and that the company did not receive any communication from the threat actors involved. The nature of the attack is not disclosed.

This incident follows a previous data breach in 2023, when Rubrik was among the victims of the wide-scale Fortra GoAnywhere data theft attacks conducted by the Clop ransomware gang.