Sophisticated Smishing Attack on Twilio Leads to Employee Credential Leak and Data Breach
Unknown hackers managed to trick several Twilio employees into providing their credentials, offering the criminals a way into the infrastructure, the company has disclosed. Bypassing a company's security measures is difficult, especially if everything is protected and up to date. Unfortunately, all that hard work to secure the network infrastructure goes out the window when workers fall prey to phishing. Basically, employees willingly give direct access to hackers. "On August 4, 2022, Twilio b
Marketing lists for crypto customers stolen in data breach at marketing platform Klaviyo
Ecommerce marketing automation platform Klaviyo has suffered a data breach that allowed attackers to access its internal systems and steal customer data. The marketing firm says the breach occurred on Aug. 3 after the attackers managed to steal login credentials of a company employee. “We identified an employee’s login credentials had been compromised, as a result of suspicious activity from our internal logging and a user report,” the notification reads [https://www.klaviyo.com/blog/august-20
Leaky platform at Chinese adult platform exposed sensitive info of 14 million users
A leaky database belonging to Hjedd, an infamous Chinese-based adult platform, has exposed personal information linked to more than 14 million user accounts. According to security researcher Anurag Sen, the servers of the NSFW platform had been found leaking more than 24 GB of files with user information, and the server continues to update itself, leaking more information every second. The researcher said that no security or authentication was required to access the exposed server and exfiltra
XDR: The Latest TLA or Newest Cyber Shield?
The cybersecurity industry is full of three letter acronyms (TLAs). Often, they are simply new marketing spin on an existing technology. Now, the market is a buzz with XDR - or extended detection and response solutions as the next set of effective offerings that focus on extending observability, detection, and response capabilities to stay ahead of the ever changing threat landscape