NordVPN has released a statement confirming that all systems and data remain secure, following fake claims by a threat actor of an alleged breach.

“Claims that NordVPN’s internal Salesforce development servers were breached are false,” Laura Tyrylyte, head of Public Relations at Nord Security, said in a statement.

On January 4th, the company identified a data dump on an illicit breach forum website, containing allegations made by a threat actor claiming to have accessed a “NordVPN Salesforce development server.”

“We immediately started to verify these claims. Our security team has completed an initial forensic analysis of the alleged data dump, and we can confirm that, at this stage, there are no signs that NordVPN servers or internal production infrastructure have been compromised,” Tyrylyte explains.

“The data in question does not originate from NordVPN’s internal Salesforce environment or any other services mentioned in the claim.”

Instead, the company’s investigation revealed that the leaked configuration files were related to a third-party platform, with which it had briefly maintained a trial account.

“NordVPN systems remain fully secure.”

The company provides more details on the trial with a third-party platform in a blog post.

What did the threat actor claim?

A threat actor that posted claims of allegedly breaching NordVPN's development environment used a new account “1011.”

“Today I am leaking +10 DB's source codes from a NordVPN development server,” the threat...

Read Full Story: https://news.google.com/rss/articles/CBMikgFBVV95cUxQdnQ2T2QwU1hUUEk1UUZmQkdX...