- Joined
- Dec 3, 2020
- Messages
- 2,423
Clients of the firm should prepare for a mass phishing attack.
On August 3, email marketing service provider Klaviyo was the victim of a data breach of its customers after an attacker gained access to the company's internal systems and uploaded marketing lists for cryptocurrency-related customers.
A hacker stole an employee's credentials in a phishing attack and then used them to access the employee's account and Klaviyo's internal support tools. According to the company, the attacker used internal customer support tools to find crypto-related accounts and uploaded marketing lists for 38 crypto-related customers.
The uploaded information contained names, email addresses, phone numbers, and some custom profile properties for the profiles in those lists. The hacker also uploaded 2 internal lists used by Klaviyo for product updates and marketing updates that contain names, addresses, email addresses and phone numbers.
Klaviyo notified law enforcement and turned to a third-party security firm to investigate their network breach.
Klaviyo warned customers to be prepared for subsequent targeted phishing attacks using stolen data. The company urged users to be wary of password reset requests, requests for payment information, or emails from unusual domains.
The firm has already discovered new websites that copy the layout of the Klaviyo site and attempt to obtain customer credentials. There could be a surge in phishing campaigns involving similar websites in the coming weeks. Attackers are already actively looking for stolen Klaviyo data to use in their attacks.
On August 3, email marketing service provider Klaviyo was the victim of a data breach of its customers after an attacker gained access to the company's internal systems and uploaded marketing lists for cryptocurrency-related customers.
A hacker stole an employee's credentials in a phishing attack and then used them to access the employee's account and Klaviyo's internal support tools. According to the company, the attacker used internal customer support tools to find crypto-related accounts and uploaded marketing lists for 38 crypto-related customers.
The uploaded information contained names, email addresses, phone numbers, and some custom profile properties for the profiles in those lists. The hacker also uploaded 2 internal lists used by Klaviyo for product updates and marketing updates that contain names, addresses, email addresses and phone numbers.
Klaviyo notified law enforcement and turned to a third-party security firm to investigate their network breach.
Klaviyo warned customers to be prepared for subsequent targeted phishing attacks using stolen data. The company urged users to be wary of password reset requests, requests for payment information, or emails from unusual domains.
The firm has already discovered new websites that copy the layout of the Klaviyo site and attempt to obtain customer credentials. There could be a surge in phishing campaigns involving similar websites in the coming weeks. Attackers are already actively looking for stolen Klaviyo data to use in their attacks.
