American technology vendor Ubiquiti Networks suffered a data breach when some of its systems managed by a third-party cloud provider was accessed by unauthorized parties.
The company started sending out notification emails to its customers asking them to change their passwords and enable 2FA for their accounts.
However, the company is not aware of any access to databases that contained user data.
According to the data breach notification sent to the customers, the company states that they are not currently aware of evidence of access to any databases that host user data, but they cannot be certain that user data has not been exposed.
This data may include the user’s name, email address, and the hashed and salted password to user accounts for the web portal ui.com. The data may also include the address and phone number of some users who have been provided it.
The site is used to manage devices from a remote location and as a help and support portal.
More details regarding the breach are not known at the moment.