fbpx

Twilio says breach also compromised Authy two-factor app users

U.S. messaging large Twilio has confirmed hackers additionally compromised the accounts of some Authy customers as a part of a wider breach of Twilio’s methods. Authy is Twilio’s two-factor authentication (2FA) app it acquired in 2015.

Twilio’s breach earlier this month, which noticed malicious actors accessing the info of over 100 Twilio prospects after efficiently phishing a number of workers, retains rising in scale. Researchers this week linked the assault on Twilio and others to a wider phishing marketing campaign by a hacking group dubbed “0ktapus,” which has stolen near 10,000 worker credentials from at least 130 organizations since March.

Now, Twilio has confirmed that Authy customers had been additionally impacted by the breach.

In an update to its incident report on August 24, Twilio stated that the hackers gained entry to the accounts of 93 particular person Authy customers and registered further units, successfully permitting the attackers to generate login codes for any related 2FA-enabled account.

The corporate stated it has “since recognized and eliminated unauthorized units from these Authy accounts” and is advising affected Authy customers, which it has contacted, to evaluate linked accounts for suspicious exercise. It’s additionally recommending that customers evaluate all units tied to their Authy accounts and disable “enable Multi-device” within the Authy utility to stop new machine additions.

Whereas utilizing any two-factor authentication is healthier than none, hackers are more and more devising new methods to trick customers into handing over app-based codes, which is usually far harder to acquire than codes despatched by textual content message.

Twilio additionally stated within the replace that the variety of compromised Twilio prospects has elevated from 125 to 163, with hackers accessing information at these organizations for a “restricted time frame.” Twilio has not named its impacted prospects, however some — like encrypted messaging app Signal — have notified their very own customers that they had been affected by the Twilio breach.

Id large Okta on Thursday additionally confirmed it was compromised on account of the Twilio breach. The corporate stated in a blog post that the hackers — which it refers to as “Scatter Swine” — spoofed Okta login pages to focus on organizations that depend on the corporate’s single sign-on service. Okta stated that when the hackers gained entry to Twilio’s inside console, they obtained a “small quantity” of Okta buyer cellphone numbers and SMS messages that contained one-time passwords. This marks the second time Okta has reported a safety incident this yr.

In its evaluation of the phishing marketing campaign, Okta stated that Scatter Swine hackers probably harvested cell phone numbers from information aggregation companies that hyperlink cellphone numbers to workers at particular organizations. A minimum of one of many hackers referred to as focused workers impersonating IT assist, noting that the hacker’s accent “seems to be North American.” This will align with this week’s Group-IB investigation, which advised one of many hackers concerned within the marketing campaign could reside in North Carolina.

DoorDash on Thursday also confirmed this week that it was compromised by the identical hacking group. The meals supply large instructed TechCrunch that malicious hackers stole credentials from workers of a third-party vendor that had been then used to realize entry to a few of DoorDash’s inside instruments. The corporate declined to call the third-party, however confirmed the seller was not Twilio.

Total
0
Shares
Related Posts
bitcoinBTC/USD
$ 19,248.31 1.53%
ethereumETH/USD
$ 1,324.73 0.63%
tetherUSDT/USD
$ 0.996948 0.56%
usd-coinUSDC/USD
$ 0.992062 0.93%
bnbBNB/USD
$ 280.91 0.39%
xrpXRP/USD
$ 0.433829 0.21%
binance-usdBUSD/USD
$ 0.992399 0.81%
cardanoADA/USD
$ 0.430494 1.59%
solanaSOL/USD
$ 33.87 2.35%
dogecoinDOGE/USD
$ 0.059745 1.73%
polkadotDOT/USD
$ 6.33 1.03%
shiba-inuSHIB/USD
$ 0.000011 2.69%
daiDAI/USD
$ 0.994715 0.69%
staked-etherSTETH/USD
$ 1,318.36 0.84%
tronTRX/USD
$ 0.059744 0.40%
matic-networkMATIC/USD
$ 0.744209 0.10%
avalanche-2AVAX/USD
$ 17.03 1.13%
uniswapUNI/USD
$ 6.28 2.13%
wrapped-bitcoinWBTC/USD
$ 19,219.97 1.63%
okbOKB/USD
$ 15.55 0.69%
leo-tokenLEO/USD
$ 4.18 0.33%
chainlinkLINK/USD
$ 7.78 2.20%
litecoinLTC/USD
$ 53.07 0.61%
ethereum-classicETC/USD
$ 27.41 1.04%
cosmosATOM/USD
$ 12.66 2.78%
ftx-tokenFTT/USD
$ 23.98 0.06%
nearNEAR/USD
$ 3.53 1.53%
crypto-com-chainCRO/USD
$ 0.110095 3.03%
stellarXLM/USD
$ 0.107397 1.82%
moneroXMR/USD
$ 147.00 0.67%
algorandALGO/USD
$ 0.341701 1.26%
bitcoin-cashBCH/USD
$ 115.65 1.74%
terra-lunaLUNC/USD
$ 0.000278 1.46%
quant-networkQNT/USD
$ 133.72 1.62%
flowFLOW/USD
$ 1.73 5.69%
apecoinAPE/USD
$ 5.34 0.87%
vechainVET/USD
$ 0.022990 1.23%
filecoinFIL/USD
$ 5.70 1.93%
chain-2XCN/USD
$ 0.074621 3.18%
internet-computerICP/USD
$ 5.97 1.57%
hedera-hashgraphHBAR/USD
$ 0.057072 1.69%
fraxFRAX/USD
$ 0.986651 1.52%
tezosXTZ/USD
$ 1.42 0.99%
decentralandMANA/USD
$ 0.693597 1.08%
the-sandboxSAND/USD
$ 0.832275 1.79%
chilizCHZ/USD
$ 0.233650 4.04%
eosEOS/USD
$ 1.20 4.38%
axie-infinityAXS/USD
$ 12.30 0.82%
elrond-erd-2EGLD/USD
$ 47.25 1.28%
theta-tokenTHETA/USD
$ 1.08 1.51%
Total
0
Share