August 26, 2022 06:26 pm
Original Link: https://www.theverge.com/2022/8/26/23323036/phishing-scam-campaign-twilio-hack-companies
A huge phishing campaign has targeted over 130 companies, affecting Twilio and Signal
Over 130 organizations, including Twilio, DoorDash, and Cloudflare, have been potentially compromised by hackers as part of a months-long phishing campaign nicknamed “0ktapus” by security researchers. Login credentials belonging to nearly 10,000 individuals were stolen by attackers who imitated the popular single sign-on service Okta, according to a report from cybersecurity outfit Group-IB.
As Group-IB goes on to detail, the attackers used that access to pivot and attack accounts across other services. On August 15th, the secure messaging service Signal alerted users that the attackers' Twilio breach allowed them to reveal as many as 1,900 Signal accounts and confirmed they were able to register new devices to the accounts of a few,...
Original Link: https://www.theverge.com/2022/8/26/23323036/phishing-scam-campaign-twilio-hack-companies
Share this article:
Tweet
View Full Article
The Verge
The Verge is an ambitious multimedia effort founded in 2011More About this Source Visit The Verge