Cylance is a cybersecurity company that provides advanced threat prevention and security solutions. It is a subsidiary of BlackBerry.

What happened in the Cylance data breach?

A data breach involving a third-party platform led to the sale of old data on a hacking forum. The threat actor known as Sp1d3r offered to sell the data for $750,000. The exposed data includes 34,000,000 customer and employee emails, as well as personally identifiable information (PII) of Cylance customers, partners, and employees.

What kind of data was exposed in the Cylance data breach?

The exposed data includes 34,000,000 customer and employee emails, along with personally identifiable information (PII) of Cylance customers, partners, and employees. The compromised data dates back to 2015-2018.

What measures are recommended to prevent similar breaches?

It is recommended to implement multi-factor authentication (MFA) protections and ensure strong, unique credentials for all accounts. These measures can help prevent unauthorized access and exploitation of customer credentials.

Incident

Cylance reports data breach caused by a 'Third-Party Platform'

Q: Has BlackBerry's data or systems been compromised in the Cylance breach?

No, BlackBerry, the parent company of Cylance, has confirmed that no BlackBerry data or systems related to current customers, products, and operations have been compromised. The leaked samples appear to be old marketing data used by Cylance.

Q: Who is the threat actor responsible for the Cylance data breach?

The threat actor known as Sp1d3r is responsible for the Cylance data breach. Sp1d3r is also implicated in selling 3TB of data from Advance Auto Parts and has been linked to other breaches involving Snowflake accounts.

published: June 10, 2024

Learn More

Cylance, a cybersecurity company, has reported that a data breach has led to the sale of old data on a hacking forum. The breach, attributed to a third-party platform, was highlighted when a threat actor known as Sp1d3r offered to sell the data for $750,000.

The exposed data includes:

34,000,000 customer and employee emails
Personally identifiable information (PII) of Cylance customers, partners, and employees

Upon investigation, researchers and Cylance stated that the leaked samples seem to be old marketing data used by Cylance. BlackBerry, the parent company of Cylance, claims that no BlackBerry data or systems related to current customers, products, and operations have been compromised.

The compromised data, dating back to 2015-2018, originates from a third-party platform, predating BlackBerry's acquisition of Cylance.

The same threat actor, Sp1d3r, is also implicated in selling 3TB of data from Advance Auto Parts, which was accessed through a breached Snowflake account. Cylance, confirmed as a Snowflake customer, uses the platform for its web management console.

Recent breaches at Santander and Ticketmaster have also been linked to Snowflake attacks. The attack is blaimed on exploitation of stolen customer credentials and lack of multi-factor authentication (MFA) protections.

Cylance reports data breach caused by a 'Third-Party Platform'

Read More
Eurofiber France reports data breach exposing data of …
Sovos Compliance reports MOVEit related data breach
Nintendo allegedly breached by by Crimson Collective hacking …
Unicoin reports compromise of their G-Suite account
PSI Software SE critical infrastructure vendor reports ransomware …