Cyber Security News

Twilio Hacked – Attackers Gain Access to Internal Systems to Steal Customer Data

by Esmeralda McKenzie
written by Esmeralda McKenzie
Twilio Hacked – Attackers Gain Access to Internal Systems to Steal Customer Data

Twilio Hacked – Attackers Gain Access to Internal Systems to Steal Customer Data

Twilio Hacked

Twilio disclosed an knowledge breach where the attackers fabricate salvage entry to to the corporate’s within system to perceive workers’ credentials. Twilio is an American company based exclusively mostly in San Francisco, California, which affords programmable verbal change tools for making and receiving cell phone calls, sending and receiving textual protest messages, and performing various verbal change functions utilizing its web provider APIs.

In accordance to the incident document of the corporate, “This tall-based exclusively mostly attack against our employee horrible succeeded in fooling some workers into providing their credentials”.

Phishing Messages

Twilio’s fresh and passe workers no longer too prolonged ago reported receiving textual protest messages purporting to be from the corporate’s IT department. The protest of the textual protest message conveys that the employee’s passwords had expired, that their agenda had modified, and that they mandatory to log in to a URL the attacker controls.

qW2ZzlnYlUuHE0s8fvaje KFgw5kBhKsgQTtvBEYREmMV.width 1000

The corporate says the URLs frail words devour “Twilio,” “Okta,” and “SSO” to strive and trick users to click on on a link redirecting them to a touchdown page that imitates Twilio’s signal-in page.

“The textual protest messages originated from U.S. provider networks. We worked with the U.S. carriers to shut down the actors and worked with the hosting suppliers serving the malicious URLs to shut those accounts down. Additionally, the threat actors perceived to enjoy sophisticated abilities to compare employee names from sources with their cell phone numbers”, Twilio

Twilio says that it is miles attentive to comparable assaults that hit various corporations, for this motive, it has coordinated its response to the threat actors. The corporate is collaborating with carriers to quit phishing messages, as neatly as their registrars and hosting suppliers to shut down the malicious URLs.

“As the threat actors were in a situation to salvage entry to a tiny number of accounts’ knowledge, we were notifying the affected possibilities on an particular particular person foundation with the minute print. Whereas you would additionally be no longer contacted by Twilio, then it contrivance we haven’t any evidence that your memoir became once impacted by this attack.”

“We can undoubtedly waste an intensive post-mortem on this incident and commence instituting betterments to address the root causes of the compromise genuine away”, Twilio.

You may perchance note us on Linkedin, Twitter, Facebook for day-to-day Cybersecurity updates.

Source credit : cybersecuritynews.com

Related Posts

Google Chrome 127 Released With Fix for Vulnerabilities...

CrowdStrike Details Incident Affected Millions of Windows Systems...

IPFire Unveils New Feature to Protect Systems from...

Play Ransomware Variant Attacking Linux ESXi Servers

Google Researchers Detailed Tools Used by APT41 Hacker...

Threat Actors Hijacking Facebook Accounts With Password Stealing...

Weekly Cyber Security News Letter – Data Breaches,...

CrowdStrike Releases Fix for Updates Causing Windows to...

Cisco Smart Software Manager Flaw Let Attackers Change...

Killer Ultra Malware Attacking EDR Tools From Symantec,...