PagerDuty was made aware in April 2024 of a data compromise that occurred at one of our vendors, Sisense. We take the security and integrity of your data seriously. PagerDuty is actively monitoring the situation and working to take appropriate measures to mitigate any potential risks to your organization, even while our vendor is still investigating the specifics of the incident. Below is an initial update on actions taken based on the information known to PagerDuty at this time.

Does PagerDuty use Sisense?

Yes, PagerDuty does use Sisense.

Has PagerDuty detected or experienced any unauthorized activity due to the breach?

At this time, we are not aware of any impact on PagerDuty or its customers.

What steps has PagerDuty taken to address this potential exposure

Per guidance from the Cybersecurity and Infrastructure Security Agency (CISA) and Sisense recommendations for mitigating potential effects of this incident, we have reset credentials and secrets potentially exposed to, or used to access Sisense services.

Does PagerDuty use any third parties in the provision of services to PD Customers?

Yes, see the list of third parties included in PagerDuty’s SOC2 Type II.

Has PagerDuty reached out to these third parties (4th parties to PagerDuty customers) to understand whether they have experienced any impact?

Yes, we have either already reached out, or are in the process of reaching out, to our mission-critical third parties, and will take appropriate steps based on their responses.

At this time, we recommend that you remain vigilant and take any precautions you deem necessary to safeguard your data and systems. We are in close communication with our vendor and will provide you with further updates as additional relevant information becomes available.

If you have any questions or concerns, please contact us at [email protected]. We are here to support you and address any issues that may arise.