September 22, 2023

Slack has suffered a data breach but reassured customers that their data was not affected by the incident.

Slack, in an announcement, explained how an unknown threat acted to obtain Slack employee tokens and used them to access private GitHub repositories. But, the repositories did not hold Slack’s primary codebase or customer data.

To combat the threat, Slack invalidated the stolen tokens and said to be looking further into the “potential impact” of the data breach.Even though there’s no evidence the attackers made away with sensitive information, Slack still decided to rotate its secrets.

Advertisements

In mid-2020, the company suffered a data breach forcing it to reset the passwords for thousands of users. At the time, it was believed that roughly 1% of all Slack users (which was equivalent to more than 65,000 people then) were affected by the incident.

Slack was also hit by a cyberattack back in 2015 when hackers broke into its user profile database and accessed scrambled user passwords

Tags:

1 thought on “Slack Discloses a Data Breach

  1. Pingback: Slack Discloses a Data Breach — TheCyberThrone – YodaSec's Expose

Leave a Reply

You may have missed

T-Mobile and Data Breach tightly coupled

September 21, 2023

Cisco Acquires Splunk in a blockbuster deal

September 21, 2023

Atlassian BitBucket and Confluence Vulnerabilities

September 21, 2023

Snatch ransomware Dissection

September 21, 2023

Fortinet Fixes Vulnerabilities in FortiOS

September 20, 2023

Trend Micro Endpoint Vulnerability – CVE-2023-41179

September 20, 2023
%d bloggers like this: