Upstream database security threat
Incident Report for AgileMD
We received notification from MongoHQ, an upstream database provider we use for non-HIPAA data storage, that a security breach has occured originating from their internal support application. We have not received any indication that AgileMD data was compromised though we will begin an internal analysis to better understand the threat. As a precaution and per MongoHQ's recommendation, we rotated infrastructure access keys and reset system-level usernames and passwords with database access.
Occurred on October 29