Hackers Behind Twilio Breach Also Qualified Cloudflare Employees
August 10, 2022Ravie Lakshmanan
Web infrastructure enterprise Cloudflare on Tuesday disclosed at least 76 workers and their family members users received text messages on their individual and function phones bearing related traits as that of the sophisticated phishing attack towards Twilio . “They arrived from 4 phone quantities associated with T-Cell-issued SIM cards: (754) 268-9387, (205) 946-7573, (754) 364-6683 and (561) 524-5989,” it stated . “They pointed to an formal-looking domain: cloudflare-okta.com.” The attack, which transpired about the identical time Twilio was specific, was eventually unsuccessful. The wave of about 100 smishing messages commenced less than 40 minutes right after the rogue area was registered by using Porkbun, the company observed, incorporating the phishing site was intended to relay the credentials entered by unsuspecting buyers to the attacker by using Telegram in serious-time. This also intended that the attack could defeat 2FA roadblocks, as the Time-based mostly A single Time Password ( TOTP ) codes inp
Some pieces of this report are sourced from:
thehackernews.com