Type
Incident
Actors
Pub. date
January 17, 2025
Initial access
End-user compromise
Impact
Data exfiltration
Observed techniques
Targeted technologies
Status
Finalized
Last edited
Jan 19, 2025 8:08 PM
An Otelier employee's workstation was infected with an infostealer, leading to compromise of their Jira credentials. The threat actor abused these to gain access to the Jira server, which contained additional credentials granting access to S3 buckets, which contained various documents.