Really Simple Systems
Service Name: Really Simple Systems
Service Description: Really Simple Systems is a cloud-based customer relationship management (CRM) system designed for small to medium-sized businesses, focusing on sales, marketing, and customer service functionality.
Service Address: [https://www.reallysimplesystems.com/](https://www.reallysimplesystems.com/)
Really Simple Systems
REALLY_SIMPLE_SYSTEMS
-
Validation Type: -
-
IP Allow list: Does not exist
-
Secret Access Scope: Grants access to the Really Simple Systems CRM platform and its associated data.
-
Secret Revokement URL: Does not exist
-
Secret Example:
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ -
Suspicious Activity Investigation Instructions:
-
Review access logs in the Really Simple Systems admin portal for unauthorized access
-
Check for unusual data exports or modifications to customer records
-
Monitor for unexpected API calls or integration activities
-
Verify if there are any new user accounts created without authorization
-
Look for changes in permission settings or role assignments
-
-
Mitigation Instructions:
-
Log into the Really Simple Systems admin portal
-
Navigate to the API settings or integration section
-
Revoke the compromised token or API key
-
Generate a new token with appropriate permissions
-
Update all applications or services using the old token
-
Review and adjust access permissions as needed
-
Enable additional security features such as IP restrictions if available
-