{"id":41277,"date":"2023-12-05T16:46:14","date_gmt":"2023-12-05T16:46:14","guid":{"rendered":"https:\/\/signiflowdev.wpengine.com\/media\/?p=41272"},"modified":"2023-12-06T07:17:14","modified_gmt":"2023-12-06T07:17:14","slug":"cyber-incident-2023-2","status":"publish","type":"post","link":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2","title":{"rendered":"ownCloud Cyber Incident 2023"},"content":{"rendered":"\n<p><strong>General communication on incident<\/strong> &#8211; <strong>05 December 2023<\/strong><\/p>\n\n\n\n<p><strong>Subject: Notification of ownCloud cyber incident<\/strong><\/p>\n\n\n\n<p><strong>The ownCloud application and details of the incident&nbsp;<\/strong>&nbsp;<\/p>\n\n\n\n<p>Following the recent incident where a criminal third party unlawfully obtained access to an isolated ownCloud server hosted by SigniFlow (Pty) Ltd (South Africa), we are providing a further update on our investigation.&nbsp;&nbsp;<\/p>\n\n\n\n<p>ownCloud is a self-hosted file synchronisation and sharing platform used for storing, sharing, and accessing files. The solution is similar to other cloud services such as Google Drive or Dropbox.&nbsp;&nbsp;<\/p>\n\n\n\n<p>On 21 November 2023, ownCloud disclosed a zero-day vulnerability (CVE-2023-49103) of their platform. We understand that the vulnerability enables the unlawful and unauthorised intrusion of an ownCloud server.&nbsp;&nbsp;<\/p>\n\n\n\n<p>Our use of the ownCloud application was limited to the storage of certain company information and the sharing of software update files between internal teams. The ownCloud service was also in use by two clients who opted to use it for uploading documents, limited to support functions, outside the normal support channels.&nbsp;<\/p>\n\n\n\n<p>On 28 November 2023, we received suspicious alerts from the ownCloud service in respect of data access and deletion that was actioned without authorisation. We immediately investigated and took action to isolate and take the affected ownCloud service offline. An investigation was initiated to understand the scope of the incident. External legal and forensic specialists were appointed to assist with our investigation.&nbsp;&nbsp;<\/p>\n\n\n\n<p>The investigation revealed that the zero-day vulnerability (CVE-2023-49103) was exploited on the ownCloud service which led to a criminal third party gaining access to this service.&nbsp;&nbsp;<\/p>\n\n\n\n<p><strong>Status of our investigation<\/strong>&nbsp;<\/p>\n\n\n\n<p>We have determined that data was impacted with the majority of the files being non-sensitive and non-confidential information about our business.&nbsp;&nbsp;<\/p>\n\n\n\n<p>We have experienced no disruption to our services and confirm that the vulnerability has been contained and resolved. This is because our reliance on the ownCloud service was limited to the specific circumstances as explained above.&nbsp;&nbsp;<\/p>\n\n\n\n<p>We can confirm that there was data accessed and exfiltration of third-party data stored on the ownCloud service. Details of the incident were shared with the third parties on 29 November 2023 so that further investigations and notifications could take place. We are actively supporting those third parties affected and will continue to do so by providing clarity and information where required.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<\/p>\n\n\n\n<p><strong>Impact on other services<\/strong>&nbsp;<\/p>\n\n\n\n<p>The ownCloud application is in no way connected to our network or core systems and service offering. We have no reason to believe that our core systems have been impacted or that any access was gained into our environment(s) by unlawful third parties through this incident.&nbsp;&nbsp;<\/p>\n\n\n\n<p>We take the confidentiality, privacy and security of data and personal information very seriously. We have taken additional measures to increase monitoring and security protocols where possible and urge all customers and consumers to remain vigilant in respect of this zero-day vulnerability.&nbsp;&nbsp;<\/p>\n\n\n\n<p>Our investigations are still ongoing, and we thank you for your understanding and cooperation during this time.&nbsp;<\/p>\n\n\n\n<p>If you have any questions or concerns, please feel free to contact our head of legal and compliance at <a href=\"mailto:lorettedp@signiflow.com\"><a href=\"mailto:privacyofficer@signiflow.com\" target=\"_blank\" rel=\"noreferrer noopener\">privacyofficer@signiflow.com<\/a><\/a>.\u00a0\u00a0<\/p>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>General communication on incident &#8211; 05 December 2023 Subject: Notification of ownCloud cyber incident The ownCloud application and details of the incident&nbsp;&nbsp; Following the recent incident where a criminal third party unlawfully obtained access to an isolated ownCloud server hosted by SigniFlow (Pty) Ltd (South Africa), we are providing a further update on our investigation.&nbsp;&nbsp; [&hellip;]<\/p>\n","protected":false},"author":29,"featured_media":41271,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-41277","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-electronic-signatures"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v25.3 (Yoast SEO v27.2) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>ownCloud Cyber Incident 2023 - SigniFlow \u00ae - News and Blog Media<\/title>\n<meta name=\"description\" content=\"ownCloud disclosed a zero-day vulnerability of their platform.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"ownCloud Cyber Incident 2023\" \/>\n<meta property=\"og:description\" content=\"ownCloud disclosed a zero-day vulnerability of their platform.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2\" \/>\n<meta property=\"og:site_name\" content=\"SigniFlow \u00ae - News and Blog Media\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/SigniFlow\" \/>\n<meta property=\"article:published_time\" content=\"2023-12-05T16:46:14+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-12-06T07:17:14+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2023\/12\/signiflow-cyber-alert-2023.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"630\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"christines\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@SigniFlow\" \/>\n<meta name=\"twitter:site\" content=\"@SigniFlow\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"christines\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2\"},\"author\":{\"name\":\"christines\",\"@id\":\"https:\/\/www.signiflow.com\/media\/#\/schema\/person\/7c4b0d850253bff8d6736fd1428219a0\"},\"headline\":\"ownCloud Cyber Incident 2023\",\"datePublished\":\"2023-12-05T16:46:14+00:00\",\"dateModified\":\"2023-12-06T07:17:14+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2\"},\"wordCount\":535,\"publisher\":{\"@id\":\"https:\/\/www.signiflow.com\/media\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2023\/12\/signiflow-cyber-alert-2023.png\",\"articleSection\":[\"Electronic Signatures\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2\",\"url\":\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2\",\"name\":\"ownCloud Cyber Incident 2023 - SigniFlow \u00ae - News and Blog Media\",\"isPartOf\":{\"@id\":\"https:\/\/www.signiflow.com\/media\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2023\/12\/signiflow-cyber-alert-2023.png\",\"datePublished\":\"2023-12-05T16:46:14+00:00\",\"dateModified\":\"2023-12-06T07:17:14+00:00\",\"description\":\"ownCloud disclosed a zero-day vulnerability of their platform.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#primaryimage\",\"url\":\"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2023\/12\/signiflow-cyber-alert-2023.png\",\"contentUrl\":\"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2023\/12\/signiflow-cyber-alert-2023.png\",\"width\":1200,\"height\":630},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.signiflow.com\/media\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"ownCloud Cyber Incident 2023\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.signiflow.com\/media\/#website\",\"url\":\"https:\/\/www.signiflow.com\/media\/\",\"name\":\"SigniFlow \u00ae - News and Blog Media\",\"description\":\"Electronic and Digital Signatures\",\"publisher\":{\"@id\":\"https:\/\/www.signiflow.com\/media\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.signiflow.com\/media\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.signiflow.com\/media\/#organization\",\"name\":\"SigniFlow \u00ae - News and Blog Media\",\"url\":\"https:\/\/www.signiflow.com\/media\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.signiflow.com\/media\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2020\/12\/SIGNIFLOW-SML-LOGO-180.png\",\"contentUrl\":\"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2020\/12\/SIGNIFLOW-SML-LOGO-180.png\",\"width\":180,\"height\":45,\"caption\":\"SigniFlow \u00ae - News and Blog Media\"},\"image\":{\"@id\":\"https:\/\/www.signiflow.com\/media\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/SigniFlow\",\"https:\/\/x.com\/SigniFlow\",\"https:\/\/www.linkedin.com\/company\/signiflow\/\",\"https:\/\/www.youtube.com\/c\/SigniFlow\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.signiflow.com\/media\/#\/schema\/person\/7c4b0d850253bff8d6736fd1428219a0\",\"name\":\"christines\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/secure.gravatar.com\/avatar\/fb70f2fc27abfe09b3960e4e86d8410232480a4974909201a6e97efaf85a1b3e?s=96&d=mm&r=g\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/fb70f2fc27abfe09b3960e4e86d8410232480a4974909201a6e97efaf85a1b3e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/fb70f2fc27abfe09b3960e4e86d8410232480a4974909201a6e97efaf85a1b3e?s=96&d=mm&r=g\",\"caption\":\"christines\"},\"url\":\"https:\/\/www.signiflow.com\/media\/author\/christines\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"ownCloud Cyber Incident 2023 - SigniFlow \u00ae - News and Blog Media","description":"ownCloud disclosed a zero-day vulnerability of their platform.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2","og_locale":"en_US","og_type":"article","og_title":"ownCloud Cyber Incident 2023","og_description":"ownCloud disclosed a zero-day vulnerability of their platform.","og_url":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2","og_site_name":"SigniFlow \u00ae - News and Blog Media","article_publisher":"https:\/\/www.facebook.com\/SigniFlow","article_published_time":"2023-12-05T16:46:14+00:00","article_modified_time":"2023-12-06T07:17:14+00:00","og_image":[{"width":1200,"height":630,"url":"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2023\/12\/signiflow-cyber-alert-2023.png","type":"image\/png"}],"author":"christines","twitter_card":"summary_large_image","twitter_creator":"@SigniFlow","twitter_site":"@SigniFlow","twitter_misc":{"Written by":"christines","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#article","isPartOf":{"@id":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2"},"author":{"name":"christines","@id":"https:\/\/www.signiflow.com\/media\/#\/schema\/person\/7c4b0d850253bff8d6736fd1428219a0"},"headline":"ownCloud Cyber Incident 2023","datePublished":"2023-12-05T16:46:14+00:00","dateModified":"2023-12-06T07:17:14+00:00","mainEntityOfPage":{"@id":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2"},"wordCount":535,"publisher":{"@id":"https:\/\/www.signiflow.com\/media\/#organization"},"image":{"@id":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#primaryimage"},"thumbnailUrl":"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2023\/12\/signiflow-cyber-alert-2023.png","articleSection":["Electronic Signatures"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2","url":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2","name":"ownCloud Cyber Incident 2023 - SigniFlow \u00ae - News and Blog Media","isPartOf":{"@id":"https:\/\/www.signiflow.com\/media\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#primaryimage"},"image":{"@id":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#primaryimage"},"thumbnailUrl":"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2023\/12\/signiflow-cyber-alert-2023.png","datePublished":"2023-12-05T16:46:14+00:00","dateModified":"2023-12-06T07:17:14+00:00","description":"ownCloud disclosed a zero-day vulnerability of their platform.","breadcrumb":{"@id":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#primaryimage","url":"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2023\/12\/signiflow-cyber-alert-2023.png","contentUrl":"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2023\/12\/signiflow-cyber-alert-2023.png","width":1200,"height":630},{"@type":"BreadcrumbList","@id":"https:\/\/www.signiflow.com\/media\/cyber-incident-2023-2#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.signiflow.com\/media\/"},{"@type":"ListItem","position":2,"name":"ownCloud Cyber Incident 2023"}]},{"@type":"WebSite","@id":"https:\/\/www.signiflow.com\/media\/#website","url":"https:\/\/www.signiflow.com\/media\/","name":"SigniFlow \u00ae - News and Blog Media","description":"Electronic and Digital Signatures","publisher":{"@id":"https:\/\/www.signiflow.com\/media\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.signiflow.com\/media\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.signiflow.com\/media\/#organization","name":"SigniFlow \u00ae - News and Blog Media","url":"https:\/\/www.signiflow.com\/media\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.signiflow.com\/media\/#\/schema\/logo\/image\/","url":"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2020\/12\/SIGNIFLOW-SML-LOGO-180.png","contentUrl":"https:\/\/www.signiflow.com\/media\/wp-content\/uploads\/sites\/2\/2020\/12\/SIGNIFLOW-SML-LOGO-180.png","width":180,"height":45,"caption":"SigniFlow \u00ae - News and Blog Media"},"image":{"@id":"https:\/\/www.signiflow.com\/media\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/SigniFlow","https:\/\/x.com\/SigniFlow","https:\/\/www.linkedin.com\/company\/signiflow\/","https:\/\/www.youtube.com\/c\/SigniFlow"]},{"@type":"Person","@id":"https:\/\/www.signiflow.com\/media\/#\/schema\/person\/7c4b0d850253bff8d6736fd1428219a0","name":"christines","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/fb70f2fc27abfe09b3960e4e86d8410232480a4974909201a6e97efaf85a1b3e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/fb70f2fc27abfe09b3960e4e86d8410232480a4974909201a6e97efaf85a1b3e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/fb70f2fc27abfe09b3960e4e86d8410232480a4974909201a6e97efaf85a1b3e?s=96&d=mm&r=g","caption":"christines"},"url":"https:\/\/www.signiflow.com\/media\/author\/christines"}]}},"_links":{"self":[{"href":"https:\/\/www.signiflow.com\/media\/wp-json\/wp\/v2\/posts\/41277","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.signiflow.com\/media\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.signiflow.com\/media\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.signiflow.com\/media\/wp-json\/wp\/v2\/users\/29"}],"replies":[{"embeddable":true,"href":"https:\/\/www.signiflow.com\/media\/wp-json\/wp\/v2\/comments?post=41277"}],"version-history":[{"count":0,"href":"https:\/\/www.signiflow.com\/media\/wp-json\/wp\/v2\/posts\/41277\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.signiflow.com\/media\/wp-json\/wp\/v2\/media\/41271"}],"wp:attachment":[{"href":"https:\/\/www.signiflow.com\/media\/wp-json\/wp\/v2\/media?parent=41277"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.signiflow.com\/media\/wp-json\/wp\/v2\/categories?post=41277"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.signiflow.com\/media\/wp-json\/wp\/v2\/tags?post=41277"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}