Twilio, Authy’s mother or father firm hacked in a phishing assault | Thealike


US-based enterprise software program vendor firm Twilio on Monday stated it has been hacked as somebody gained “unauthorised access” to data associated to its buyer accounts.

Twilio has greater than 150,000 prospects, together with Facebook and ride-hailing main Uber.

“On August 4, 2022, Twilio became aware of unauthorized access to information related to a limited number of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials,” stated the corporate.

This broad-based assault in opposition to its worker base succeeded in fooling some workers into offering their credentials.

The attackers then used the stolen credentials to achieve entry to a few of its inside techniques, the place they had been capable of entry sure buyer information.

“We continue to notify and are working directly with customers who were affected by this incident. We are still early in our investigation, which is ongoing,” stated Twilio.

The firm didn’t present particulars on the extent of the breach or what number of prospects had been affected.

“We worked with the US carriers to shut down the actors and worked with the hosting providers serving the malicious URLs to shut those accounts down. Additionally, the threat actors seemed to have sophisticated abilities to match employee names from sources with their phone numbers,” stated Twilio.

“We have heard from other companies that they, too, were subject to similar attacks, and have coordinated our response to the threat actors including collaborating with carriers to stop the malicious messages, as well as their registrars and hosting providers to shut down the malicious URLs,” Twilio added.

(Except for the headline, the remainder of this IANS article is un-edited)

For extra know-how news, product evaluations, sci-tech options and updates, preserve studying Thealike.in



Source link

Comments are closed.