It was discovered today that Vanta, one of the leading providers of compliance automation solutions, had experienced a critical security lapse that resulted in the unauthorised exposure of confidential customer data, which resulted from a software malfunction. An inadvertent security breach arising from a recent modification to the company’s product code has inadvertently enabled certain clients to access the private information of other customers using the platform, which has been discovered.
There has been widespread concern regarding the robustness of the firm’s internal safeguards in light of this incident, which has reportedly affected hundreds of Vanta’s enterprise users. Given its role in assisting businesses with managing and maintaining their own cybersecurity and compliance postures, this incident has sparked widespread concern over the firm’s internal safeguards. In order to counteract the vulnerability, Vanta’s internal teams began investigating the vulnerability on May 26, prompting the company to implement containment measures immediately.
Despite the company’s announcement that a full remediation plan would be in place by June 4, the breach continues to be an ongoing issue as of the latest update. Observers, as well as affected customers, have been examining the failure of a platform designed expressly to protect sensitive corporate data from compromise, as it now appears to have failed to accomplish such an outcome.
This incident has raised a few questions abou
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
This article has been indexed from CySecurity News – Latest Information Security and Hacking Incidents
Read the original article: