The email marketing firm, Klaviyo, one of the most popular software in the world that hosts newsletters and e-mail services, has confirmed that they experienced a data breach in their system on August 3.
Klaviyo detailed that the threat actor made it possible to infiltrate their system through baiting one of the company's employees. This type of strategy has been used numerous times by malicious actors who want to launch a data breach against a certain company.
Email Marketing Firm
The email marketing firm stated that the hackers stole login credentials from one of their employees through a phishing attack.
After that, these login credentials were used to access the employee's account as well as various internal support tools provided by Klaviyo.
According to BleepingComputer, the malicious threat actor used the internal customer support tools to locate specific niched email lists that the company has.
The investigation revealed that the hacker chose to primarily select a list of emails that are related to cryptocurrency activities. The offender was able to scan information from 44 Klaviyo accounts and downloaded the information regarding 38 of those.
According to Klaviyo, they have reported a breach of their network to the appropriate authorities and are working with a third-party cybersecurity firm to further investigate the incident.
The information that was downloaded included phone numbers, email addresses, and names, in addition to certain account-specific custom profile properties for accounts that were included in those lists or segments.
In addition to illegally obtaining the crypto-related emails, the threat actor also compromised the company's two internal lists for product and marketing updates, which contain information like phone numbers, email addresses, names, and addresses.
Klaviyo's Data For Crypto Hacking
The email marketing firm wants to warn its partners and subscribers of the imposing risk ahead after the incident happened.
The customers might be targeted for numerous malicious cyberattacks such as phishing, smishing, and ransomware using the information from the stolen data.
According to Klaviyo, the company is worried that the threat actor may engage in phishing or smishing activities, and they want all of their customers, contacts, and employees to be wary of any requests to reset their passwords, inquire about their payment information, or receive emails from unusual domains.
In addition, Klaviyo is aware of new websites that are attempting to acquire Klaviyo logins by emulating the Klaviyo layout.
In the coming weeks, there may be an increase in the number of phishing campaigns and websites that are virtually identical to legitimate ones.
Read Also: Crypto Rug Pulls: The Biggest NFT Scams Yet
Cryptocurrency Hacking
Since the hacking incident, it may not be surprising that a certain set of customers will be targeted by the hackers who are behind this. However, there is also a possibility that the actors will sell the data acquired to other threat actors.
On the other hand, it would not be surprising in the least if these details were eventually made public and made available for free on hacking forums.
Incidents like this may not be all that surprising, as actors have continued to directly attack victims for monetary gains.
Cryptocurrency, a new digital asset, has become one of their go-to targets. iTechPost previously reported that between January 2021 and March 2022, the United States Federal Trade Commission (FTC) estimates that over 46,000 people in the United States have reported falling victim to scams that caused them to lose cryptocurrency valued at over one billion dollars.