Cloudflare told CNN Business on Wednesday that it uses Verkada systems to monitor entry points to offices and public roads, and that Verkada had contacted him to notify the company that his cameras may have been compromised. Cloudflare said that none of its own customers’ data was affected by the Verkada breach.
“The cameras were located in officially closed offices for almost a year,” said the company.
Okta, Verkada’s identity management company and client, told CNN Business that it is investigating the security breach, but that its own services have not been affected.
“On Tuesday, we learned of a report on Verkada and Okta,” said Okta’s communications director, Lindsay Life, in a statement to CNN Business. “We continue to investigate the situation and will provide updates as additional relevant information becomes available.”
Verkada told CNN Business that he has disabled “all internal administrator accounts” to block the breach.
“Our internal security team and external security company are investigating the scale and scope of this problem,” said Verkada, “and we have notified the authorities.”
According to Bloomberg, an international group of hackers managed to gain access to Verkada using administrator credentials found on the public Internet.
Verkada told CNN Business that he reached out to customers and provided them with a hotline.