-: FOLLOW US :- @theinsaneapp
Reddit suffered a security breach on Sunday evening.
-: FOLLOW US :- @theinsaneapp
The breach was caused by a "sophisticated phishing campaign" aimed at employees.
-: FOLLOW US :- @theinsaneapp
Cybercriminals used a fraudulent landing page to steal employees' login credentials and two-factor authentication codes.
-: FOLLOW US :- @theinsaneapp
One employee fell victim to the phishing scam, giving the threat actors access to Reddit's code, internal documents, and internal dashboards.
-: FOLLOW US :- @theinsaneapp
The company claims that its primary production systems were not breached.
-: FOLLOW US :- @theinsaneapp
Reddit became aware of the incident after the victim self-reported the issue to the security team.
-: FOLLOW US :- @theinsaneapp
The breach resulted in limited exposure of contact information for Reddit's employees and advertisers.
-: FOLLOW US :- @theinsaneapp
The company is investigating the incident and working with employees to improve their security skills.
-: FOLLOW US :- @theinsaneapp
To stay safe from phishing attacks, be careful when opening links or downloading attachments, check the URL of the website you're visiting, and use multifactor authentication.
-: FOLLOW US :- @theinsaneapp
Reddit has no evidence to suggest that any non-public data has been accessed or that its information has been published or distributed online.