It’s a PR person’s nightmare. Just when a company is touting its product, it has a problem with that same product. That appears to be the case with Datadog today. The startup cloud-monitoring company had lined up news for today, announcing its support in monitoring Microsoft’s Azure platform.
Unfortunately, last Friday Datadog had to issue a security notice telling its users that it had experienced a security incident within its server infrastructure. It detected unauthorized activity associated with a handful of production infrastructure servers, including a database that stores user credentials.
It’s not only a security incident, it’s an ironic incident because server monitoring is what Datadog does for customers. Its monitoring product includes anomaly detection to identify servers behaving abnormally compared to their peers.
“We strongly recommend that you immediately revoke or rotate any credentials in use in your Datadog account as described in our email,” wrote Andrew Becherer, the company’s chief security officer, in a blog posting. “We are recommending revocation of all credentials shared with Datadog.”
The problem appears to be associated with compromised credentials within Datadog’s server infrastructure alone. The blog says any Datadog agents running on customer servers are not affected by the incident.
The company on Friday sent emails to its customers with instructions on how to reset passwords and revoke all credentials they had shared with Datadog.