A huge phishing campaign has targeted over 130 companies, affecting Twilio and Signal
by Jess Weatherbed from The Verge - All Posts on (#62Y5X)
The 0ktapus phishing campaign is one of the best-executed security attacks of this scale to date. | Illustration by Alex Castro / The Verge Over 130 organizations, including Twilio, DoorDash, and Cloudflare, have been potentially compromised by hackers as part of a months-long phishing campaign nicknamed 0ktapus" by security researchers. Login credentials belonging to nearly 10,000 individuals were stolen by attackers who imitated the popular single sign-on service Okta, according to a report from cybersecurity outfit Group-IB.
As Group-IB goes on to detail, the attackers used that access to pivot and attack accounts across other services. On August 15th, the secure messaging service Signal alerted users that the attackers' Twilio breach allowed them to reveal as many as 1,900 Signal accounts and confirmed they were able to register new devices to the accounts of a few,...