• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
mailchimp suffers another security breach compromising some customers' information

Mailchimp Suffers Another Security Breach Compromising Some Customers’ Information

You are here: Home / General Cyber Security News / Mailchimp Suffers Another Security Breach Compromising Some Customers’ Information
January 19, 2023

Preferred email marketing and advertising and newsletter assistance Mailchimp has disclosed yet another security breach that enabled risk actors to obtain an internal aid and account admin tool to attain facts about 133 buyers.

“The unauthorized actor performed a social engineering attack on Mailchimp workforce and contractors, and received obtain to pick Mailchimp accounts employing worker credentials compromised in that attack,” the Intuit-owned organization explained in a disclosure.

The progress was very first documented by TechCrunch.

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


Mailchimp explained it recognized the lapse on January 11, 2023, and noted that there is no proof the unauthorized party breached Intuit systems or other shopper facts beyond the 133 accounts.

It additional explained the major contacts for all these influenced accounts were being notified in 24 several hours, and that it has due to the fact assisted all those people in regaining entry to their accounts.

The Atlanta-dependent organization, even so, did not reveal the length for which the intruder remained on its systems and the specific styles of details accessed.

But WooCommerce, which is one of the breached accounts, mentioned the incident exposed users’ names, retail store URLs, addresses, and email addresses but not their payment facts, passwords, or other sensitive info.

In the past calendar year by itself, Mailchimp has been the target of two distinct breaches, the first one particular of which included a malicious actor gaining unauthorized access to 319 consumer accounts in April 2022 with the goal of carrying out crypto phishing cons.

Then in August 2022, it fell for a different elaborate social engineering attack orchestrated by a group called 0ktapus (aka Scatter Swine) that resulted in the compromise of 216 purchaser accounts.

Observed this posting fascinating? Follow us on Twitter  and LinkedIn to study additional exclusive material we submit.


Some areas of this short article are sourced from:
thehackernews.com

Previous Post: «Cyber Security News Chinese APT Group Vixen Panda Targets Iranian Government Entities
Next Post: Crypto-Exchange Used to Launder Ransomware Transactions Dismantled Cyber Security News»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • BREAKING: 7,000-Device Proxy Botnet Using IoT, EoL Systems Dismantled in U.S. – Dutch Operation
  • OtterCookie v4 Adds VM Detection and Chrome, MetaMask Credential Theft Capabilities
  • Initial Access Brokers Target Brazil Execs via NF-e Spam and Legit RMM Trials
  • Deploying AI Agents? Learn to Secure Them Before Hackers Strike Your Business
  • Malicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal Credentials
  • Beyond Vulnerability Management – Can You CVE What I CVE?
  • Google Rolls Out On-Device AI Protections to Detect Scams in Chrome and Android
  • Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell
  • 38,000+ FreeDrain Subdomains Found Exploiting SEO to Steal Crypto Wallet Seed Phrases
  • SonicWall Patches 3 Flaws in SMA 100 Devices Allowing Attackers to Run Code as Root

Copyright © TheCyberSecurity.News, All Rights Reserved.