{"id":11932,"date":"2022-08-09T14:51:24","date_gmt":"2022-08-09T14:51:24","guid":{"rendered":"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/"},"modified":"2022-08-09T14:51:26","modified_gmt":"2022-08-09T14:51:26","slug":"twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign","status":"publish","type":"post","link":"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/","title":{"rendered":"Twilio suffers data breach after its employees were targeted by a phishing campaign"},"content":{"rendered":"

Source: https:\/\/www.theverge.com\/2022\/8\/8\/23296923\/twilio-data-breach-phishing-campaign-employees-targeted<\/a>
\n
<\/br><\/code><\/p>\n

\n

Digital communication platform Twilio was hacked after a phishing campaign tricked its employees into revealing their login credentials (via TechCrunch<\/em><\/a>). The company disclosed the data breach in a post on its blog<\/a>, noting that only \u201ca limited number\u201d of customer accounts were affected by the attack. Twilio allows web services to send SMS messages and place voice calls over telephone networks and is used by companies including Uber, Twitter, and Airbnb.<\/p>\n

The hack occurred on August 4th and involved a bad actor sending SMS messages to Twilio employees that asked them to reset their password or alerted them to a change in their schedule. Each message included a link with keywords, like \u201cTwilio,\u201d \u201cSSO\u201d (single sign-on), and \u201cOkta,\u201d the name of the user authentication service used by many companies. The link directed employees to a page that mimicked a real Twilio sign-in page, allowing hackers to collect the information employees inputted there.<\/p>\n

After it became aware of the breach, Twilio worked with US phone carriers to shut down the SMS scheme and also had web hosting platforms take down the phony sign-in pages. Despite this, Twilio says that hackers managed to swap to new hosting providers and mobile carriers to continue their campaign.<\/p>\n

\u201cBased on these factors, we have reason to believe the threat actors are well-organized, sophisticated and methodical in their action,\u201d Twilio adds. \u201cSocially engineered attacks are \u2014 by their very nature \u2014 complex, advanced, and built to challenge even the most advanced defenses.\u201d<\/p>\n

Twilio\u2019s working with law enforcement to find out who\u2019s responsible for the campaign and says it also heard from companies that \u201cwere subject to similar attacks.\u201d Twilio has since shut down access to the compromised employee accounts and will also alert any customers affected by the breach.<\/p>\n

Social engineering is becoming an increasingly common tactic for hackers. Earlier this year, a report from Bloomberg<\/em> revealed that both Apple and Meta shared data with hackers pretending to be law enforcement officials<\/a>. Last year, a hacker tricked a Robinhood customer service representative<\/a> into disclosing the information of over 7 million customers.<\/p>\n<\/div>\n


<\/br><\/code><\/p>\n

Source: https:\/\/www.theverge.com\/2022\/8\/8\/23296923\/twilio-data-breach-phishing-campaign-employees-targeted<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Source: Digital communication platform Twilio was hacked after a phishing campaign tricked its employees into revealing their login credentials (via TechCrunch). The company disclosed the data breach in a post on its blog, noting that only \u201ca limited number\u201d of customer accounts were affected by the attack. Twilio allows web services to send SMS messages […]<\/p>\n","protected":false},"author":1,"featured_media":11933,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"nf_dc_page":"","om_disable_all_campaigns":false,"pagelayer_contact_templates":[],"_pagelayer_content":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[17,8],"tags":[18],"class_list":["post-11932","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-tech","category-technology","tag-tech"],"yoast_head":"\nTwilio suffers data breach after its employees were targeted by a phishing campaign - Science and Nerds<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Twilio suffers data breach after its employees were targeted by a phishing campaign - Science and Nerds\" \/>\n<meta property=\"og:description\" content=\"Source: Digital communication platform Twilio was hacked after a phishing campaign tricked its employees into revealing their login credentials (via TechCrunch). The company disclosed the data breach in a post on its blog, noting that only \u201ca limited number\u201d of customer accounts were affected by the attack. Twilio allows web services to send SMS messages […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/\" \/>\n<meta property=\"og:site_name\" content=\"Science and Nerds\" \/>\n<meta property=\"article:published_time\" content=\"2022-08-09T14:51:24+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-08-09T14:51:26+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/scienceandnerds.com\/wp-content\/uploads\/2022\/08\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign_62f2746d3cab0.jpeg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"628\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/\",\"url\":\"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/\",\"name\":\"Twilio suffers data breach after its employees were targeted by a phishing campaign - Science and Nerds\",\"isPartOf\":{\"@id\":\"https:\/\/scienceandnerds.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/08\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign_62f2746d3cab0.jpeg?fit=1200%2C628&ssl=1\",\"datePublished\":\"2022-08-09T14:51:24+00:00\",\"dateModified\":\"2022-08-09T14:51:26+00:00\",\"author\":{\"@id\":\"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e\"},\"breadcrumb\":{\"@id\":\"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/#primaryimage\",\"url\":\"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/08\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign_62f2746d3cab0.jpeg?fit=1200%2C628&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/08\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign_62f2746d3cab0.jpeg?fit=1200%2C628&ssl=1\",\"width\":1200,\"height\":628},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/scienceandnerds.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Twilio suffers data breach after its employees were targeted by a phishing campaign\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/scienceandnerds.com\/#website\",\"url\":\"https:\/\/scienceandnerds.com\/\",\"name\":\"Science and Nerds\",\"description\":\"My WordPress Blog\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/scienceandnerds.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e\",\"name\":\"admin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/scienceandnerds.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g\",\"caption\":\"admin\"},\"sameAs\":[\"https:\/\/scienceandnerds.com\"],\"url\":\"https:\/\/scienceandnerds.com\/author\/admin\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Twilio suffers data breach after its employees were targeted by a phishing campaign - Science and Nerds","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/","og_locale":"en_US","og_type":"article","og_title":"Twilio suffers data breach after its employees were targeted by a phishing campaign - Science and Nerds","og_description":"Source: Digital communication platform Twilio was hacked after a phishing campaign tricked its employees into revealing their login credentials (via TechCrunch). The company disclosed the data breach in a post on its blog, noting that only \u201ca limited number\u201d of customer accounts were affected by the attack. Twilio allows web services to send SMS messages […]","og_url":"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/","og_site_name":"Science and Nerds","article_published_time":"2022-08-09T14:51:24+00:00","article_modified_time":"2022-08-09T14:51:26+00:00","og_image":[{"width":1200,"height":628,"url":"https:\/\/scienceandnerds.com\/wp-content\/uploads\/2022\/08\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign_62f2746d3cab0.jpeg","type":"image\/jpeg"}],"author":"admin","twitter_card":"summary_large_image","twitter_misc":{"Written by":"admin","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/","url":"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/","name":"Twilio suffers data breach after its employees were targeted by a phishing campaign - Science and Nerds","isPartOf":{"@id":"https:\/\/scienceandnerds.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/#primaryimage"},"image":{"@id":"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/08\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign_62f2746d3cab0.jpeg?fit=1200%2C628&ssl=1","datePublished":"2022-08-09T14:51:24+00:00","dateModified":"2022-08-09T14:51:26+00:00","author":{"@id":"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e"},"breadcrumb":{"@id":"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/#primaryimage","url":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/08\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign_62f2746d3cab0.jpeg?fit=1200%2C628&ssl=1","contentUrl":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/08\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign_62f2746d3cab0.jpeg?fit=1200%2C628&ssl=1","width":1200,"height":628},{"@type":"BreadcrumbList","@id":"https:\/\/scienceandnerds.com\/2022\/08\/09\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/scienceandnerds.com\/"},{"@type":"ListItem","position":2,"name":"Twilio suffers data breach after its employees were targeted by a phishing campaign"}]},{"@type":"WebSite","@id":"https:\/\/scienceandnerds.com\/#website","url":"https:\/\/scienceandnerds.com\/","name":"Science and Nerds","description":"My WordPress Blog","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/scienceandnerds.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e","name":"admin","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/scienceandnerds.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g","caption":"admin"},"sameAs":["https:\/\/scienceandnerds.com"],"url":"https:\/\/scienceandnerds.com\/author\/admin\/"}]}},"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/08\/twilio-suffers-data-breach-after-its-employees-were-targeted-by-a-phishing-campaign_62f2746d3cab0.jpeg?fit=1200%2C628&ssl=1","_links":{"self":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts\/11932"}],"collection":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/comments?post=11932"}],"version-history":[{"count":1,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts\/11932\/revisions"}],"predecessor-version":[{"id":11934,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts\/11932\/revisions\/11934"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/media\/11933"}],"wp:attachment":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/media?parent=11932"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/categories?post=11932"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/tags?post=11932"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}