A Reddit has announced that a “sophisticated and highly-targeted” attack resulted in the theft of an employee’s credentials. On February 5th, hackers were able to gain access to the Reddit website’s systems after tricking employees with “plausible-looking prompts” that directed them to a mimic site of Reddit’s intranet gateway, designed to steal login information and second-factor tokens. Fortunately, the employee who fell for the scheme immediately self-reported the incident, allowing the website’s security team to act quickly and block the hackers’ access.
Based on several days of initial investigation by security, engineering, and data science (and friends!), we have no evidence to suggest that any of your non-public data has been accessed, or that Reddit’s information has been published or distributed online
the company said
The hackers then gained access to Reddit source code and some other internal data documents, including advertiser and employee information but the user data was not affected.
+ There are no comments
Add yours