Η service συνομιλιών (chat) Slack, αποκάλυψε ότι εντόπισε “μη εξουσιοδοτημένη πρόσβαση” στη βάση δεδομένων που αποθηκεύει τις πληροφορίες των προφίλ των χρηστών της.
Soon after, the company installed an application for controlled entry identity two-factor and urges all its users to turn on the security feature immediately.
It also highlights that it disabled all old passwords, and all users will need to use the password reset to create new credentials.
In a blog statement, the company says:
We know very well that our service is essential for many groups. Earning your trust through running a secure service will always be paramount priority us. We deeply regret this incident and apologize for the inconvenience.”
Η Slack reports that the unfortunate or unfortunate incident occurred during a four-day period in February. It handled its central database where there are user names, email addresses, encrypted passwords (hashed), and other user information such as phone numbers and Skype IDs. All of this data was accessible to hackers according to TNW.
The company said there is no indication whether the attackers were able to decrypt the passwords, as it uses a technique encryptions one-way hashing, and that no financial information has been leaked.
More information about security practices of the service are available on the company's website.
Αν χρησιμοποιείτε την υπηρεσία, αλλάξτε άμεσα κωδικό πρόσβασης, και αν είναι δυνατόν, χρησιμοποιήστε έλεγχο ID cardof two factors.