account, through which we can see that the EC2 instances don’t exist anymore, but we are not able to get any logs or anything because we don’t have the root account,” he said.
KiranaPro has reached out to GitHub’s support team to help identify the hacker’s IP addresses and other traces of the incident, said Ravindran.
Similarly, Ravindran told TechCrunch that the startup is filing cases against its former employees, who he said had not submitted their credentials for accessing their GitHub accounts to check their logs.
It is unclear how the attack happened. Some of the biggest cyberattacks in recent years, such as LastPass, Change Healthcare, and Snowflake, were caused by credential theft, such as through password-stealing malware installed on an employee’s laptop, and missing or unenforced multi-factor authentication.
The companies were ultimately responsible for enforcing the security of their own systems, including whether their employees must use multi-factor authentication, and terminating accounts of former employees who no longer work at their company.
KiranaPro counts Blume Ventures, Unpopular Ventures, and Turbostart among its institutional venture backers, as well as Olympic medalist PV Sindhu and BCG MD Vikas Taneja among its angel investors. The company has a team of 15 employees located in Bengaluru and Kerala.
