By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
CryptoCommunityCryptoCommunity
  • Home
  • General
  • Blockchain
  • Crypto
  • DeFi
  • Metaverse
  • NFT
Search
  • BTC
  • ETH
  • USDT
  • USDC
  • BNB
  • BUSD
  • ADA
  • XRP
  • SOL
  • DOGE
  • DOT
  • MATIC
Reading: Twilio hackers breached over 130 organizations during months-long hacking spree – TechCrunch
Share
Aa
CryptoCommunityCryptoCommunity
Aa
  • Home
  • General
  • Blockchain
  • Crypto
  • DeFi
  • Metaverse
  • NFT
Search
  • Home
  • General
  • Blockchain
  • Crypto
  • DeFi
  • Metaverse
  • NFT
Follow US
© 2022 Foxiz News Network. Ruby Design Company. All Rights Reserved.
CryptoCommunity > Blog > General > Twilio hackers breached over 130 organizations during months-long hacking spree – TechCrunch
General

Twilio hackers breached over 130 organizations during months-long hacking spree – TechCrunch

admin Published August 25, 2022
Last updated: 2022/08/25 at 1:31 PM
Share
SHARE

[ad_1]

The hackers that breached Twilio earlier this month also compromised over 130 organizations during their hacking spree that netted the credentials of close to 10,000 employees.

Twilio’s recent network intrusion allowed the hackers access the data of 125 Twilio customers and companies — including end-to-end encrypted messaging app Signal — after tricking employees into handing over their corporate login credentials and two-factor codes from SMS phishing messages that purported to come from Twilio’s IT department. At the time, TechCrunch learned of phishing pages impersonating other companies, including a U.S. internet company, an IT outsourcing company and a customer service provider, but the scale of the campaign remained unclear.

Now, cybersecurity company Group-IB says the attack on Twilio was part of a wider campaign by the hacking group it’s calling “0ktapus,” a reference to how the hackers predominantly target organizations that use Okta as a single sign-on provider.

Group-IB, which launched an investigation after one of its customers was targeted by a linked phishing attack, said in findings shared with TechCrunch that the vast majority of the targeted companies are headquartered in the U.S. or have U.S.-based staff. The attackers have stolen at least 9,931 user credentials since March, according to Group-IB’s findings, with more than half containing captured multi-factor authentication codes used to access a company’s network.

“On many occasions, there are images, fonts, or scripts that are unique enough that they can be used to identify phishing websites designed with the same phishing kit,” Roberto Martinez, a senior threat intelligence analyst at Group-IB, told TechCrunch. “In this case, we found an image that is legitimately used by sites leveraging Okta authentication, being used by the phishing kit.”

“Once we located a copy of the phishing kit, we started digging deeper to get a better understanding of the threat. The analysis of the phishing kit revealed that it was poorly configured and the way it had been developed provided an ability to extract stolen credentials for further analysis,” said Martinez.

While it’s still not known how the hackers obtained phone numbers and the names of employees who were then sent SMS phishing messages, Group-IB notes that the attacker first targeted mobile operators and telecommunications companies and “could have collected the numbers from those initial attacks.”

Group-IB wouldn’t disclose the names of any of the corporate victims but said the list includes “well-known organizations,” most of which provide IT, software development and cloud services. A breakdown of the victims shared with TechCrunch shows that the threat actors also targeted 13 organizations in the finance industry, seven retail giants, and two video game organizations.

During its investigation, Group-IB discovered that code in the hacker’s phishing kit revealed configuration details of the Telegram bot that the attackers used to drop compromised data. (Cloudflare first revealed the use of Telegram by the hackers.) Group-IB identified one of the Telegram group’s administrators who goes by the handle “X,” whose GitHub and Twitter handles suggest they may reside in North Carolina.

Group-IB says it’s not yet clear if the attacks were planned end-to-end in advance or whether opportunistic actions were taken at each stage. “Regardless, the 0ktapus campaign has been incredibly successful, and the full scale of it may not be known for some time,” the company added.

The Moscow-founded startup Group-IB was co-founded by Ilya Sachkov, who was the company’s chief executive until September 2021 when Sachkov was detained in Russia on charges of treason after allegedly transferring classified information to an unnamed foreign government, claims Sachkov denies. Group-IB, which has since moved its headquarters to Singapore, maintains the co-founder’s innocence.

[ad_2]

You Might Also Like

Revyze is building the TikTok of educational videos

YouTube ends the test asking users to get a premium subscription to watch 4K videos

Who is going to buy Cadillac’s $300,000 hand-built EV?

Don’t let today’s software rally improve your mood

Daily Crunch: Kanye West reaches agreement to acquire social media platform Parler

Sign Up For Daily Newsletter

Be keep up! Get the latest breaking news delivered straight to your inbox.
[mc4wp_form]
By signing up, you agree to our Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
admin August 25, 2022
Share this Article
Facebook TwitterEmail Print
Share
Previous Article Bitcoin Price Watch: BTC Facing Renewed Challenge To Keep Price Above $20,000
Next Article Egyptian subscription management and recurring billing platform SubsBase raises $2.4M seed funding – TechCrunch

Latest News

earn bitcoins fast
How to earn bitcoins fast
crypto
Cryptocurrency is a Scam or Not
How to Tell If a Cryptocurrency is a Scam or Not
crypto
Losing In Cryptocurrency Trading
Tips to Avoid Losing In Cryptocurrency Trading
crypto
Sell Products Online with Bitcoins
How to Sell Products Online with Bitcoins – The Ultimate Guide
crypto

You Might also Like

Revyze is building the TikTok of educational videos

6 Min Read

YouTube ends the test asking users to get a premium subscription to watch 4K videos

2 Min Read

Who is going to buy Cadillac’s $300,000 hand-built EV?

4 Min Read

Don’t let today’s software rally improve your mood

1 Min Read

Crypto Community

  • Home
  • Crypto Calculator
  • Blog
  • Contact Us
  • Privacy Policy
  • Disclaimer
  • Terms and Conditions

Real time Cryptocurrency

  • Crypto Prices
  • Dogecoin price
  • Shibainu coin price
  • Bitcoin Price
  • Cardano Price
  • Litecoins Price

Cryptocurrency Price USD

  • Bitcoin price USD
  • Ethereum price USD
  • Tether price USD
  • BNB Price USD
  • Cardano Price USD
  • Solana Price USD
  • Peps coin Price USD
  • floki inu Price USD
  • SIA coin Price USD
CryptoCommunityCryptoCommunity
Follow US

© 2022 Cryptos Community All Rights Reserved. All logos and images used on this website are registered trademarks of their respective companies. All Rights Reserved. Cryptos Community is not liable for inaccuracies, errors, or omissions found herein. For the removal of copyrighted images, trademarks, or other issues, Contact Us. 


Removed from reading list

Undo
Welcome Back!

Sign in to your account

Lost your password?