The enterprise software provider Twilio (NYSE: TWLO) has been breached by a persistent threat actor who was successful in duping employees into disclosing login information that was later used to steal customer data from third parties.
The San Francisco-based company admitted to the breach in an online notice that describes a skilled threat actor with the resources to switch carriers for ongoing text-based phishing attacks. This threat actor is described as having clever social engineering skills. According to Twilio, the attempt to trick some of its employees into providing their credentials was successful.
After obtaining access to some of our internal systems, the attackers used the stolen credentials to access some of our customer data, according to Twilio.
For more such updates follow us on Google News ITsecuritywire News