The chat service Slack revealed that it has detected "unauthorized access" to the database that stores its users' profile information.
Immediately after company install app for controlled login ID cardς δύο παραγόντων και προτρέπει όλους τους χρήστες της να ενεργοποιήσουν άμεσα το χαρακτηριστικό ασφαλείας.
It also highlights that it disabled all old passwords, and all users will need to use the password reset to create new credentials.
In a blog statement, the company says:
We know very well that our service is necessary for many teams. Gaining your trust through the operation of a secure service will always be our highest priority. We are deeply saddened by this and apologize for the inconvenience. "
Η Slack reports that the unfortunate or unfortunate incident occurred during a four-day period in February. It handled its central database where there are user names, email addresses, encrypted passwords (hashed), and other user information such as phone numbers and Skype IDs. All of this data was accessible to hackers according to TNW.
The company said there was no indication that the attackers were able to decrypt the passwords, as uses τεχνική κρυπτογράφησης one-way hashing, και ότι καμία χρηματοοικονομική information it has not been leaked.
More information about security practices of the service are available on the company's website.
If you use the service, switch immediately code access, and if possible, use two-factor authentication.