P2021-ND-218

UiPath SRL

On approximately November 30, 2020, a third party notified the Organization that a file containing what appeared to be registration information of certain UiPath Academy participants was accessible on a publicly-available website. The Organization investigated and determined that the content of the file identified by the third party matched the content of a file maintained by the Organization on a third-party cloud server. This file was last updated by the Organization on approximately March 17, 2020. The Organization has not yet determined when the unauthorized user first accessed the file, but confirmed that the file was posted on the publicly-available website on or around November 30, 2020. The Organization indicated that the incident resulted from human error, wherein an employee accidentally misconfigured the permissions for this file. On December 2, 2020, the Organization correctly configured the file permission settings to prevent further unauthorized access.

File Type: pdf
Categories: 2021
Tags: Unauthorized access