What happened at Twilio?
Twilio first announced they had been attacked earlier this month, in an August 7 blog post. The company provides communications tools and services to thousands of clients, including Signal but also Facebook, Uber, Lyft, AirBnb, and Twitter. According to Twilio, employees were targeted with a phishing link and message asking them to reset their log-in information. When some staff fell for the ploy, attackers were then able to use those employee credentials to access internal systems and customer data.
Advertisement
“We have identified approximately 125 Twilio customers whose data was accessed by malicious actors for a limited period of time, and we have notified all of them,” the company wrote in an update on August 10. Clearly, Signal was one of those impacted Twilio customers, but the total extent of the hack remains unknown.
And, according to Twilio, the phishing attack appears to be coordinated and ongoing. The comms giant wrote that other companies have also been subject to similar attempted hacks, and that phishing attempts and messages continue to roll in.