Ring Details

    Organization Logo

    Ring

    Santa Monica, California employees • Technology

    Industry

    Technology

    Security Incidents

    3

    Ring LLC is a manufacturer of home security and smart home devices owned by Amazon. It manufactures a titular line of smart doorbells, home security cameras, and alarm systems.

    Security Incidents

    Ring Breach of May 2023
    Severity Score
    Low to Moderate

    Type

    Data Breach

    Summary

    In May 2023, Salesforce Marketing Cloud experienced a cyber security incident that led to a service disruption affecting a subset of customers across multiple services. The disruption began at 14:48 Coordinated Universal Time (UTC), causing some customers to be unable to login and access their services. Salesforce emphasized that trust is their top value and the security of customer data is their priority. The incident involved a remote code execution vulnerability impacting Apache ActiveMQ clients and a Local File Inclusion security vulnerability reported through their Advanced Server Access ...
    Show more

    Severity

    The Salesforce Marketing Cloud cyber security incident of May 2023 initially caused service disruptions on multiple stacks, impacting the Technology team's operations. The incident escalated to affect a subset of customers across various services, leading to login and access issues. Salesforce declared an incident and engaged with Subject Matter Experts for investigation.

    Impact

    The breach impacted a subset of customers who experienced login and access issues, affecting their ability to use Salesforce services. The disruption caused inconvenience and potential delays in service execution for the affected customers. Salesforce emphasized the importance of trust and data security in addressing the impact of the breach.
    Ring Breach of Apr 2023
    Severity Score
    Moderate

    Type

    3rd Party Compromise

    Summary

    In April 2023, Ring, the home security and smart home company owned by Amazon, experienced a significant data breach. The incident was attributed to the ALPHV ransomware group, also known as BlackCat, which claimed responsibility for the attack. The threat actors reportedly gained access to Ring's systems and exfiltrated a substantial amount of data, although the exact number of compromised records was not disclosed. The attackers threatened to release the stolen data unless a ransom was paid, putting pressure on Ring to respond swiftly. Ring stated that they were investigating the incident an...
    Show more

    Severity

    The Ring cyber security incident in April 2023 involved a ransomware gang known as ALPHV breaching the company's systems and threatening to leak data, indicating a severe breach with potential data exposure and extortion risks. The incident led to a standoff between Ring and the ransomware group, highlighting the seriousness of the security compromise and the challenges in resolving the situation.

    Impact

    The breach had a significant impact on Ring's customers, with the Federal Trade Commission (FTC) announcing a settlement that required Ring to pay $5.8 million in refunds to affected customers. This financial impact on Ring demonstrates the scale of the breach and the consequences of failing to adequately protect customer data, leading to regulatory scrutiny and compensation efforts.
    Ring Breach of Nov 2016
    Severity Score
    Moderate to Significant

    Type

    Data Breach

    Summary

    In November 2016, FriendFinder Networks, the parent company of several adult-oriented websites including AdultFriendFinder, suffered a massive data breach. The breach, attributed to an unknown threat actor, resulted in the exposure of over 412 million user accounts, making it one of the largest data breaches in history at the time. Compromised data included usernames, email addresses, and passwords, many of which were stored in plaintext or hashed with the weak SHA-1 algorithm. The breach also exposed sensitive information from users of other FriendFinder Networks sites such as Cams.com and Pe...
    Show more

    Severity

    The breach was severe as over 412 million accounts, email addresses, and passwords from FriendFinder Networks websites were exposed in the hack that occurred in November 2016.

    Impact

    The breach impacted a vast number of users, exposing their personal information and potentially compromising their privacy and security due to the large scale of the data breach.

    KEEP YOUR ENVIRONMENT SECURE

    Weak credentials are the leading cause of breaches. Beyond Identity can help.

    See MFA exploits in action
    Watch how adversaries exploit companies in quick videos