Update2: Brian Krebs has a great post criticizing those who reported on DirectDefense’s claims without waiting for a response from Cb. Sadly, this site is also guilty of that by just citing and linking to others’ reporting without doing any verification.
From the this-can’t-be-good dept., Catalin Cimpanu reports:
Sensitive corporate data from customers protected by Carbon Black endpoint detection and response (EDR) solutions has been found on multiscanner services, according to an investigation by DirectDefense, a provider of managed security strategies.
The shocking data leak has been tied to an API key which DirectDefense claims it belongs to Carbon Black Cb Response, a next-gen anti-malware EDR product.
Read more on Bleeping Computer.