JumpCloud invalidated and reset the API keys for all administrators, the company said on a support page posted last week.
The company told customers to update all third-party integrations with newly established keys due to what it described as an ongoing incident.
“Out of an abundance of caution relating to an ongoing incident, JumpCloud has decided to rotate all API keys for JumpCloud admins,” the company said in a support post posted Wednesday and updated Friday.
The cloud directory and access authentication provider did not specify the nature of the incident or respond to a request for comment, but the abrupt decision to reset all API keys could indicate something is amiss.
“If this was a routine process, JumpCloud would probably roll this out to customers over time, not impact all customers at once with such short notice,” William Dupre, senior director analyst on Gartner’s technical professionals security and risk management strategies team, said via email.
JumpCloud provides multi-directory management, identity and access management, multifactor authentication, single sign-on and integration with various…
