In their public statements, Nitro initially stated that there was "no evidence" that sensitive customer documents were compromised in a way that affected their, or their customers', operations directly. However, the presence of the data on the dark web suggested a much wider exposure than initially suggested. What Should You Do If You Were Affected?
Nitro offers 2FA via authenticator apps (Google Authenticator, Authy, etc.). This blocks 99% of credential-stuffing attacks. nitro pdf data breach
By January 2021, it became clear that the incident was far from minor. A data dump containing over 70 million records appeared on a hacker forum, originally listed for sale for $80,000. Later, an updated list of breached data, totaling over 77 million records, was published online. What Data Was Compromised? In their public statements, Nitro initially stated that
The breach was not merely a localized leak. It represented a systemic compromise of the company’s cloud infrastructure, exposing data from casual individual users up to Fortune 500 enterprises. 2. The Scale and Scope of the Stolen Data A data dump containing over 70 million records
Nitro issues a security advisory describing an "isolated security incident" with "low impact".
: This service can help determine whether your email address was included in the breach.