SendGrid hacked
SendGrid , an email service used by thousands of companies, including for instance Spotify, Pinterest, Uber and Coinbase, has confirmed that an employee's account has been hacked. Through this account, between February and March, 2015, cybercriminals would have accessed several internal servers of the company storing user names, email addresses and salted and hashed passwords.
Due to this incident, Sendgrid has requested their clients to reset their passwords, advising also to those using DKIM to re-generate their cryptographic keys and update their DNS domains.
Due to this incident, Sendgrid has requested their clients to reset their passwords, advising also to those using DKIM to re-generate their cryptographic keys and update their DNS domains.
References:
- 27/04/2015 sendgrid.com Update on Security Incident and Additional Security Measures
- 27/04/2015 krebsonsecurity.com SendGrid: Employee Account Hacked, Used to Steal Customer Credentials
- 28/04/2015 zdnet.com SendGrid confirms hack, issues mass password reset