The American company Twilio confirmed on its blog that hackers had gained access to its customers’ data after its staff was the victim of a phishing.
However, the brand does not give a figure on the extent of the data leak.
After Okta, Twilio victim of phishing
Twilio is a large group based in San Francisco. It designs communication solutions based on voice or SMS for businesses. Among its 150,000 customers, Twilio notably counts Facebook and Uber.
In a statement released on Monday, she admits that people have obtained a “ unauthorized access to the data of some of its customers. According to the company, the hackers used text messages that appeared to come from the company’s IT department. They managed to convince his employees to provide their professional identifiers, suggesting that their password had changed. They were then invited to connect to a web page controlled by hackers.
Like any good phishing campaign, the authors have done everything to make their approach seem legitimate to their victims. Their lexicon used common vocabulary in the company and they even quoted Okta, another company also hacked a few months ago by the Lapsus$ group.
Twilio is now working with US carriers to prevent new malicious messages, as well as hosting providers to shut down hacked URLs. However, the risk remains present, with hackers moving from one operator to another to pursue their actions.
Source : TechCrunch
0