Security News > 2022 > August > Twilio customer data exposed after its staffers got phished

Twilio confirmed a breach of the communication giant's network and accessed "a limited number" of customer accounts after tricking some employees into falling for a phishing attack.

Twilio said it first became aware of the breach on August 4, after current and former employees received text messages claiming to be from Twilio's IT department saying the employees' passwords were expired, or for some other reason they needed to log into a phony URL that looked like Twilio's sign-in page.

All of the text messages originated from US-carrier networks, and Twilio said it worked with the network operators and hosting providers to shut down the malicious accounts.

"We continue to notify and are working directly with customers who were affected by this incident," the company wrote in an incident report, adding that if you don't hear from Twilio, that means the biz believes your data is safe.

Twilio provides messaging, call center and two-factor authentication services, among others, to about 256,000 customers including Lyft, American Red Cross, Salesforce, Twitter and VMware.

Twilio declined to identify other victim organizations or provide additional information about who is believed to be behind the attacks.

News URL

https://go.theregister.com/feed/www.theregister.com/2022/08/08/twilio_phishing_attack/