Geeks for your information News Privacy & Security News v
Reddit discloses security breach: what you need to know
Reddit discloses security breach: what you need to know
harlan4096 Online
MalWare Zoo Team
*******
Posts: 16,052
Threads: 10,224
Thanks Received: 9,325 in 7,471 posts
Thanks Given: 10,269
Joined: 12 September 18
#1
Exclamation  10 February 23, 11:48
Quote:Reddit disclosed a security breach today on the site stating that a malicious actor managed to gain access to internal servers.


[Image: reddit-security-incident-phishing.png]

The company became aware of a phishing campaign that targeted Reddit employees specifically on February 5, 2023. The campaign used "plausible sounding prompts" to get employees of the site to a phishing website that looked like the company's intranet gateway.

Employees who entered their login credentials on that fake website would provide the attackers with the credentials and also second-factor tokens.

At least one employee of the site feel for the phishing ruse, giving the attacker access to "some internal docs, code, as well as some internal dashboards and business systems". Investigators of the incident found no evidence that the attacker managed to gain access to "primary production systems", which hold the majority of data, including Reddit user data. No evidence has been found up to this point that suggests that the attacker managed to gain access to non-public user data, such as email addresses, saved posts or conversations, or the "Reddit information has been published or distributed".

The employee who fell for the phishing attack reported the incident to the Security team, according to Reddit "soon after being phished". Reddit's security team changed the status of the account, removing access to systems. The attacker could no longer access Reddit systems after the change was made.

The investigation is still ongoing and Reddit did not provide details on the information that the attacker managed to obtain while having access to company servers.

Reddit suggests that users of the site enable two-factor authentication, if they have not done so already. The post links to a support article that explains how Reddit users may enable the extra layer of protection on the site.

It needs to be noted that two-factor authentication did not prevent the phishing attack against the Reddit employee. If specifically targeted, two-factor authentication does not provide 100% protection. The security feature helps, however, when user databases with passwords are copied by attackers, as the attackers would need to obtain two-factor authentication codes from particular users if they manage to break the passwords of the database.

Closing Words

It remains to be seen if Reddit's initial assessment of the security breach holds. The company analyzed the security incident for several days already, but there is always a chance that additional evidence is found at a later stage in the investigation.

Now You: do you use Reddit?
...
Continue Reading
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:

[-]
Recent Posts
Cloudflare CEO warns AI bots could outnu...
The internet you use...schreckdeividas — 11:03
ScreenToGif 2.43.1
ScreenToGif 2.43.1...harlan4096 — 08:55
uBOLite 2026.322.1735 (already available...
uBOLite 2026.322.1...harlan4096 — 08:54
Microsoft outs Windows 11 KB5085516 to f...
This month, Micros...harlan4096 — 08:53
AV-Test - Awards 2025: celebrating the v...
V-TEST Awards 2025...harlan4096 — 08:50

[-]
Birthdays
Today's Birthdays
avatar (43)artmaGoork
Upcoming Birthdays
avatar (44)gapedDow
avatar (38)snorydar
avatar (46)qaqapeti

[-]
Online Staff
harlan4096's profile harlan4096
Administrator
zevish's profile zevish

>