/cdn.vox-cdn.com/uploads/chorus_asset/file/24998948/Shadow___Creation_on_MacBook.jpg)
On the finish of September, we had been the sufferer of a social engineering assault concentrating on one in every of our workers. This extremely refined assault started on the Discord platform with the downloading of malware underneath cowl of a sport on the Steam platform, proposed by an acquaintance of our worker, himself a sufferer of the identical assault.
Our safety staff took fast motion. Regardless of our actions, the attacker was in a position to exploit one of many stolen cookies to hook up with the administration interface of one in every of our SaaS suppliers. Because of this cookie, now deactivated, the attacker was in a position to extract, by way of our SaaS supplier’s API, sure personal details about you.