Twilio hacked by phishing campaign targeting internet companies

guest · Aug 8, 2022

Twilio discloses data breach after SMS phishing attack on employees
August 8, 2022

Communications giant Twilio has confirmed hackers accessed customer data after successfully tricking employees into handing over their corporate login credentials.

The San Francisco-based company, which allows users to build voice and SMS capabilities — such as two-factor authentication (2FA) — into applications, said in a blog post published Monday that it became aware that someone gained “unauthorized access” to information related to some Twilio customer accounts on August 4.
Twilio has more than 150,000 customers, including Facebook and Uber.
Click to expand...

According to the company, the as-yet-unidentified threat actor convinced multiple Twilio employees into handing over their credentials, which allowed access to the company’s internal systems.

The attack used SMS phishing messages that purported to come from Twilio’s IT department, suggesting that the employees’ password had expired or that their schedule had changed, and advised the target to log in using a spoofed web address that the attacker controls.
Click to expand...

TechCrunch has since learned that the same actor also set up phishing pages impersonating other companies, including a U.S. internet company, an IT outsourcing company and a customer service provider, though what impact on these organizations — if any — isn’t currently known.

When reached, Twilio spokesperson Laurelle Remzi declined to say how many customers were affected or what data was accessed by the threat actors.
Click to expand...

reasonablePrivacy · Aug 8, 2022

I wonder if Authy is also affected.
Fortunately I have multi-device switched off just after I set authenticator and really strong, unique password that protects tokens.

guest · Aug 9, 2022

Cloudflare employees also hit by hackers behind Twilio breach
August 9, 2022

Cloudflare says some of its employees' credentials were also stolen in an SMS phishing attack similar to the one that led to Twilio's network being breached last week.

However, although the attackers got their hands on Cloudflare employees' accounts, they failed to breach its systems after their attempts to log in using them were blocked since they didn't have access to their victims' company-issued FIDO2-compliant security keys.

"Around the same time as Twilio was attacked, we saw an attack with very similar characteristics also targeting Cloudflare's employees," Cloudflare explained on Tuesday.
Click to expand...

As Cloudflare also revealed, after entering their credentials on the phishing pages, AnyDesk remote access software was automatically downloaded on their computers to allow the threat actors to take control of their computers remotely if installed.

The phishing messages sent to 76 employees and their families from T-Mobile phone numbers redirected the targets to a Cloudflare Okta login page clone hosted on the cloudflare-okta[.]com domain.
This domain was registered via the Porkbun domain registrar, also used to register web domains used to host landing pages seen in the Twilio attack.
Click to expand...

Cloud communications company Twilio, the owner of the highly popular two-factor authentication (2FA) provider Authy, disclosed a similar attack this week.

Unlike Cloudflare, the company said the attackers were able to access some of its customers' data after breaching internal systems using stolen employee credentials in an SMS phishing attack.

"We have heard from other companies that they, too, were subject to similar attacks, and have coordinated our response to the threat actors – including collaborating with carriers to stop the malicious messages, as well as their registrars and hosting providers to shut down the malicious URLs," Twilio said.
Click to expand...

guest · Aug 11, 2022

Phishers who breached Twilio and fooled Cloudflare could easily get you, too
Unusually resourced threat actor has targeted multiple companies in recent days.
August 10, 2022

At least two security-sensitive companies—Twilio and Cloudflare—were targeted in a phishing attack by an advanced threat actor who had possession of home phone numbers of not just employees but employees' family members as well.

In the case of Twilio, a San Francisco-based provider of two-factor authentication and communication services, the unknown hackers succeeded in phishing the credentials of an undisclosed number of employees and, from there, gained unauthorized access to the company's internal systems, the company said. The threat actor then used that access to data in an undisclosed number of customer accounts.
Click to expand...

Two days after Twilio's disclosure, content delivery network Cloudflare, also headquartered in San Francisco, revealed it had also been targeted in a similar manner.
Well-organized, sophisticated, methodical
In both cases, the attackers somehow obtained the home and work phone numbers of both employees and, in some cases, their family members. The attackers then sent text messages that were disguised to appear as official company communications.
Once an employee entered credentials into the fake site, it initiated the download of a phishing payload that, when clicked, installed remote desktop software from AnyDesk.
Click to expand...

Matthew Prince, Daniel Stinson-Diess, Sourov Zaman—Cloudflare's CEO, senior security engineer and incident response leader respectively—had a similar take.

"This was a sophisticated attack targeting employees and systems in such a way that we believe most organizations would be likely to be breached," they wrote. "Given that the attacker is targeting multiple organizations, we wanted to share here a rundown of exactly what we saw in order to help other companies recognize and mitigate this attack."

Cloudflare went on to say it wasn't disciplining the employees who fell for the scam and explained why.
Click to expand...

guest · Aug 12, 2022

Twilio: 125 customers affected by data breach, no passwords stolen
August 12, 2022

Cloud communications giant Twilio, the owner of the highly popular two-factor authentication (2FA) provider Authy, says that it has so far identified 125 customers who had their data accessed during a security breach discovered last week.

The company added the attackers behind this incident weren't able to gain access to the affected clients' authentication information.

"We have identified approximately 125 Twilio customers whose data was accessed by malicious actors for a limited period of time, and we have notified all of them," Twilio revealed in an update to the original disclosure.
"There is no evidence that customer passwords, authentication tokens, or API keys were accessed without authorization."
Click to expand...

Coordinated SMS phishing campaign
Twilio said that it coordinated its account takedown requests with other tech companies that have also been targeted in similar attacks.

Cloudflare, whose employees also had their credentials stolen in a similar SMS phishing attack, said the attackers failed to breach its systems after their login attempts were blocked because its employees are using company-issued FIDO2-compliant hardware security keys.

"While the attacker attempted to log in to our systems with the compromised username and password credentials, they could not get past the hard key requirement," Cloudflare explained.
Click to expand...

Rasheed187 · Aug 17, 2022

reasonablePrivacy said: ↑

I wonder if Authy is also affected.
Fortunately I have multi-device switched off just after I set authenticator and really strong, unique password that protects tokens.
Click to expand...

I don't fully understand yet how hackers were able to fool Twilio and Cloudfare, but from what I understood the attack on Cloudfare was stopped in an earlier stage because of the usage of hardware security keys, like Yubikey for example. So this is a good reminder that this stuff really is quite useful.

guest · Aug 15, 2022

Signal says 1,900 users’ phone numbers exposed by Twilio breach
August 15, 2022

End-to-end encrypted messaging app Signal says attackers accessed the phone numbers and SMS verification codes for almost 2,000 users as part of the breach at communications giant Twilio last week.

Signal said in a blog post Monday that it would notify about 1,900 users whose phone numbers or SMS verification codes were stolen when attackers gained access to Twilio’s customer support console.

“For about 1,900 users, an attacker could have attempted to re-register their number to another device or learned that their number was registered to Signal,” the messaging giant said. “Among the 1,900 phone numbers, the attacker explicitly searched for three numbers, and we’ve received a report from one of those three users that their account was re-registered.”
Click to expand...

While this didn’t give the attacker access to message history, which Signal doesn’t store, or contact lists and profile information, which is protected by the user’s security PIN, Signal said “in the case that an attacker was able to re-register an account, they could send and receive Signal messages from that phone number.”

For those affected, the company says it will unregister Signal on all devices that the user is currently using — or that an attacker registered them to — and will require users to re-register Signal with their phone number on their preferred device. Signal also advises users to switch on registration lock, a feature that prevents an account from being re-registered on another device without the user’s security PIN.
Click to expand...

Rasheed187 · Aug 20, 2022

reasonablePrivacy said: ↑

I wonder if Authy is also affected.
Fortunately I have multi-device switched off just after I set authenticator and really strong, unique password that protects tokens.
Click to expand...

You know what I don't get? How the heck were Twilio employees able to get hacked, don't they use 2FA systems like Authy to protect the internal Twilio network?

guest · Sep 3, 2022

Twilio hackers breached over 130 organizations during months-long hacking spree
By Carly Page @carlypage_ - August 25, 2022

The hackers that breached Twilio earlier this month also compromised over 130 organizations during their hacking spree that netted the credentials of close to 10,000 employees.

Twilio’s recent network intrusion allowed the hackers access the data of 125 Twilio customers and companies — including end-to-end encrypted messaging app Signal — after tricking employees into handing over their corporate login credentials and two-factor codes from SMS phishing messages that purported to come from Twilio’s IT department. At the time, TechCrunch learned of phishing pages impersonating other companies, including a U.S. internet company, an IT outsourcing company and a customer service provider, but the scale of the campaign remained unclear.
Click to expand...

Now, cybersecurity company Group-IB says the attack on Twilio was part of a wider campaign by the hacking group it’s calling “0ktapus,” a reference to how the hackers predominantly target organizations that use Okta as a single sign-on provider.

Group-IB, which launched an investigation after one of its customers was targeted by a linked phishing attack, said in findings shared with TechCrunch that the vast majority of the targeted companies are headquartered in the U.S. or have U.S.-based staff.

“On many occasions, there are images, fonts, or scripts that are unique enough that they can be used to identify phishing websites designed with the same phishing kit,” Roberto Martinez, a senior threat intelligence analyst at Group-IB, told TechCrunch. “In this case, we found an image that is legitimately used by sites leveraging Okta authentication, being used by the phishing kit.”
Click to expand...

While it’s still not known how the hackers obtained phone numbers and the names of employees who were then sent SMS phishing messages, Group-IB notes that the attacker first targeted mobile operators and telecommunications companies and “could have collected the numbers from those initial attacks.”

Group-IB says it’s not yet clear if the attacks were planned end-to-end in advance or whether opportunistic actions were taken at each stage. “Regardless, the 0ktapus campaign has been incredibly successful, and the full scale of it may not be known for some time,” the company added.
Click to expand...

Group-IB: Roasting 0ktapus: The phishing campaign going after Okta identity credentials

Group-IB decided to make its research on 0ktapus publicly available when Signal reported 1,900 of their user’s accounts were probably hacked. We hope this blog will provide a better understanding of what happened and will give useful recommendations on how to prevent your organization from becoming a victim.

Based on the request from our client, and from public reports made by Twilio and Cloudflare, the attacks were well designed and executed. The attackers targeted employees of companies that are customers of IAM leader Okta. These employees received text messages containing links to phishing sites that mimicked the Okta authentication page of their organization. Examples of observed phishing SMS messages can be found in the two public reports mentioned above.
Click to expand...

Supply chain attacks
Recent disclosures reveal that the initial compromises were just part of the attack. In many cases the attacker targeted mailing lists or customer-facing systems in order to launch supply chain attacks:

Marketing firm Klaviyo was breached and personal information connected to cryptocurrency-related accounts, reportedly including names, addresses, emails, and phone numbers, was stolen. This information could be used in order to steal cryptocurrency.

Email platform Mailchimp was breached to gain access to data from crypto-related companies and disrupt operations. Mailchimp was used by technology firm DigitalOcean to send confirmation emails, password resets, email-based alerts. By initiating and redirecting password resets the customers of DigitalOcean could have been compromised.

Phone number verification provider Twilio was breached, which allowed the attacker to attempt to re-register Signal accounts to new mobile devices.

Click to expand...

Rasheed187 · Aug 26, 2022

mood said: ↑

Twilio hackers breached over 130 organizations during months-long hacking spree
August 25, 2022
Group-IB: Roasting 0ktapus: The phishing campaign going after Okta identity credentials
Click to expand...

Seriously what a joke! What is missing in this article is how the heck they were able to bypass or capture 2FA codes? Can anyone explain this? I mean if I visit a fake online banking account, sure they can capture my username and password, but this fake website can't capture my 2FA code right? Isn't that the whole point of 2FA?

guest · Sep 3, 2022

Twilio breach let hackers gain access to Authy 2FA accounts
By Ionut Ilascu @Ionut_Ilascu - August 26, 2022

Twilio’s investigation into the attack on August 4 reveals that hackers gained access to some Authy user accounts and registered unauthorized devices.

Authy is a two-factor authentication (2FA) service from Twilio that allows users to secure their online accounts where the feature is supported by identifying a second time via a dedicated app after typing in the login credentials.
The service is highly popular, rivaling Google’s Authenticator, and provides support for multiple devices, synchronizing the generated 2FA tokens across registered devices.
Click to expand...

Users notified
On Thursday, Twilio announced that the threat actor that gained access to its infrastructure on August 4 has also accessed accounts of 93 Authy users and linked devices to those accounts.

Twilio underlines that the compromised Authy accounts belong to individual users and represent a small fraction of the total number of 75 million users.
However, for those 93 users, the hackers would have been able to access the 2FA codes generated for the Authy users' accounts.
Click to expand...

The company says that it has removed the unauthorized devices from the compromised accounts and has contacted the affected users to provide instructions on how to protect their accounts: [...]

The cloud communications company also says that its investigation identified 163 Twilio users whose data was accessed by the intruders for a limited period. They also received notifications about the unauthorized access.
Click to expand...

guest · Sep 3, 2022

DoorDash Discloses Data Breach Related to Attack That Hit Twilio, Others
By Eduard Kovacs @EduardKovacs - August 26, 2022

Food delivery company DoorDash revealed on Thursday that customer and employee data has been exposed as a result of a recent breach at a third-party vendor.

DoorDash said hackers abused a third-party vendor’s access to its systems. The attacker abused DoorDash’s internal tools and gained access to the information of ‘a small percentage of individuals’.
In the case of consumers, the compromised information includes names, email addresses, delivery addresses, and phone numbers. In some cases, partial payment card information (card type and last four digits of card number) and basic order information was also exposed.
Click to expand...

In the case of Dashers — the people who make deliveries — the attacker accessed name and phone number or email address.

“Based on our investigation to date, the information accessed by the unauthorized party did not include passwords, full payment card numbers, bank account numbers, or Social Security or Social Insurance numbers,” DoorDash said.
The company added that it has “no reason to believe that affected personal information has been misused for fraud or identity theft.”
Click to expand...

While the food delivery platform’s public security notice does not name the affected third-party vendor, the company has told the media that it’s related to the attack that also targeted Twilio. However, Twilio and DoorDash clarified that Twilio is not the third-party vendor in question.

Twilio is one of the more than 130 companies targeted recently in a massive phishing campaign that leverages SMS-based messages to lure the employees of targeted organizations to phishing websites that instruct them to hand over their credentials.
The attackers appear to be mostly interested in Okta identity service credentials, which is why cybersecurity firm Group-IB has been tracking the campaign as 0ktapus.
Click to expand...

guest · Sep 3, 2022

The number of companies caught up in the Twilio hack keeps growing
2FA provider Authy, password manager LastPass, and DoorDash all experienced breaches.
By Dan Goodin @dangoodin001 - August 26, 2022

The fallout from this month's breach of security provider Twilio keeps coming. Three new companies—authentication service Authy, password manager LastPass, and food delivery service DoorDash—said in recent days that the Twilio compromise led to them being hacked.

The three companies join authentication service Okta and secure messenger provider Signal in the dubious club of Twilio customers known to be breached in follow-on attacks that leveraged the data obtained by the intruders. In all, security firm Group-IB said on Thursday, at least 136 companies were similarly hacked, so it's likely many more victims will be announced in the coming days and weeks.
Click to expand...

The compromises of Authy and LastPass are the most concerning of the new revelations. Authy says it stores two-factor authentication tokens for 75 million users. Given the passwords the threat actor has already obtained in previous breaches, these tokens may have been the only things preventing the takeover of more accounts.

LastPass said the same threat actor used data taken from Twilio to gain unauthorized access through a single compromised developer account to portions of the password manager's development environment. From there, the phishers "took portions of source code and some proprietary LastPass technical information."
DoorDash also said that an undisclosed number of customers had their names, email addresses, delivery addresses, phone numbers, and partial payment card numbers stolen by the same threat actor.
Click to expand...

As already reported, the initial phishing attack on Twilio was well-planned and executed with surgical precision. The threat actors had private phone numbers of employees, more than 169 counterfeit domains mimicking Okta and other security providers, and the ability to bypass 2FA protections that used one-time passwords.
Click to expand...

One company that was targeted but didn't fall victim was Cloudflare. The reason: Cloudflare employees relied on 2FA that used physical keys such as Yubikeys, which can't be phished.
Click to expand...

reasonablePrivacy · Aug 27, 2022

Rasheed187 said: ↑

I mean if I visit a fake online banking account, sure they can capture my username and password, but this fake website can't capture my 2FA code right? Isn't that the whole point of 2FA?
Click to expand...

Yes, they can obtain them from you on a fake website. Those short-living one-time codes.
Secret token can not be compromised this way.

Rasheed187 · Aug 27, 2022

reasonablePrivacy said: ↑

Yes, they can obtain them from you on a fake website. Those short-living one-time codes. Secret token can not be compromised this way.
Click to expand...

Yes but can you explain how? I can't visualize it, but I will of course also do a Google search once again.

I mean, the thing is, let's say I go to fakebankingwebsite.com, they capture my username and password, but this fake website can't send me the correct one time password/code, so how are they going to capture this?

I mean this code is generated by my real online bank, and it's tied to my smartphone right? So hackers would also need control over my smartphone via SIM swapping. But what about authentication apps like Authy, how would they bypass this?

reasonablePrivacy · Aug 27, 2022

Rasheed187 said: ↑

Yes but can you explain how? I can't visualize it, but I will of course also do a Google search once again.

I mean, the thing is, let's say I go to fakebankingwebsite.com, they capture my username and password, but this fake website can't send me the correct one time password/code, so how are they going to capture this?

I mean this code is generated by my real online bank, and it's tied to my smartphone right? So hackers would also need control over my smartphone via SIM swapping. But what about authentication apps like Authy, how would they bypass this?
Click to expand...

? What bank? I don't know what you are talking about.

2FA TOTP codes are generated by an apps. Those codes can be typed in just as password into a website. Unfortunately TOTP authenticator apps are not interactive in a sense that the act of showing of code on a smartphone screen is initiated by an smartphone user, not by i.e. website.
Frome the Group-IB article that you commented on:

Group-IB said:

The phishing site is static, meaning attackers cannot interact with victims in real-time like more sophisticated phishing kits do. However, to gain access before the 2FA codes expire, the attackers need to use the compromised data as soon as they get it. Most likely, this means that attackers were continuously monitoring their tools and using the credentials as soon as they received them.
Click to expand...

I believe that those 2FA codes should be treated as one-time-code meaning system should remember their timestamp and deny second use of same code. I believe that this was not the case, since static fake website was enough to steal enough credentials to allow intrusion.

Rasheed187 · Aug 27, 2022

reasonablePrivacy said: ↑

? What bank? I don't know what you are talking about.

2FA TOTP codes are generated by an apps. Those codes can be typed in just as password into a website. Unfortunately TOTP authenticator apps are not interactive in a sense that the act of showing of code on a smartphone screen is initiated by an smartphone user, not by i.e. website.
Click to expand...

OK thanks, I still can't visualize this, so I will try to find more info. And how do you mean ''what bank?'' You do know that you can open an account with any online bank or stockbroker via your laptop, you don't need smartphones for this?

So once again, I browse to a fake website of etrade.com, they capture my username and password, now hackers browse to the real website of etrade.com, but now the real etrade.com will either send me a SMS code, or they will send me a code via the Authy app on my laptop or smartphone. So hackers need control over either my smartphone (SIM swapping) or my Authy account, this wasn't clearly explained in the article. But see below for more info.

mood said: ↑

The number of companies caught up in the Twilio hack keeps growing
2FA provider Authy, password manager LastPass, and DoorDash all experienced breaches.
August 26, 2022
Click to expand...

Holy crap, this explains it. Seems like hackers had access to certain peoples Authy account and were able to add trusted devices, and that's why they could access 2FA codes if they had already captured username and password. In other words, authentication apps aren't that safe either, and this incident is a great promotion for hardware security keys like YubiKey or Google Titan, but this should then be the ONLY form of authentication on websites or apps.

reasonablePrivacy · Aug 27, 2022

Rasheed187 said: ↑

OK thanks, I still can't visualize this, so I will try to find more info. And how do you mean ''what bank?'' You do know that you can open an account with any online bank or stockbroker via your laptop, you don't need smartphones for this?.
Click to expand...

Yes, I know. This is however out of topic of this thread. Breaches involved TOTP codes.

Rasheed187 said: ↑

So once again, I browse to a fake website of etrade.com, they capture my username and password, now hackers browse to the real website of etrade.com, but now the real etrade.com will either send me a SMS code, or they will send me a code via the Authy app on my laptop or smartphone. So hackers need control over either my smartphone (SIM swapping) or my Authy account, this wasn't clearly explained in the article. But see below for more info.
Click to expand...

I don't see anywhere that breach to Twilo involved SMS codes.
So many things you written shows that you don't know how TOTP works and you probably never used any account with TOTP-based 2FA. You just conflate so many 2FA authentication methods it is hard to explain.
You can't send code via Authy...

XIII · Aug 27, 2022

Rasheed187 said: ↑

So once again, I browse to a fake website of etrade.com, they capture my username and password, now hackers browse to the real website of etrade.com, but now the real etrade.com will either send me a SMS code, or they will send me a code via the Authy app on my laptop or smartphone. So hackers need control over either my smartphone (SIM swapping) or my Authy account, this wasn't clearly explained in the article. But see below for more info.
Click to expand...

No, they just need you to enter your 2FA code on that fake website, like you already did with your username and password.

That's why the phishing protection of passkeys is such a nice feature!

https://developers.apple.com/videos/play/wwdc2022/10092/

Rasheed187 · Aug 28, 2022

reasonablePrivacy said: ↑

Yes, I know. This is however out of topic of this thread. Breaches involved TOTP codes. I don't see anywhere that breach to Twilo involved SMS codes. So many things you written shows that you don't know how TOTP works and you probably never used any account with TOTP-based 2FA. You just conflate so many 2FA authentication methods it is hard to explain. You can't send code via Authy...
Click to expand...

I think you are misunderstanding me. I was trying to figure out how hackers can bypass 2FA, that's why I gave examples, I honestly don't know what's so understand about this.

XIII said: ↑

No, they just need you to enter your 2FA code on that fake website, like you already did with your username and password. That's why the phishing protection of passkeys is such a nice feature!

https://developers.apple.com/videos/play/wwdc2022/10092/
Click to expand...

I don't understand everything about Passkeys yet, but in theory it should indeed tackle the phishing part. But why would I fill in my 2FA code on this fake banking website? Because the 2FA code is only send when I'm on the real website, know what I mean?

XIII · Aug 28, 2022

Rasheed187 said: ↑

I don't understand everything about Passkeys yet, but in theory it should indeed tackle the phishing part. But why would I fill in my 2FA code on this fake banking website? Because the 2FA code is only send when I'm on the real website, know what I mean?
Click to expand...

MITM attack: the hackers use the username and password you entered on the fake website to log in on the real website (and then wait for you to give them the 2FA code as well).

Rasheed187 · Aug 28, 2022

XIII said: ↑

MITM attack: the hackers use the username and password you entered on the fake website to log in on the real website (and then wait for you to give them the 2FA code as well).
Click to expand...

Yes but this implies that they will first send you to the real website in order to trigger the 2FA code being send. So that's what I don't understand, but I guess I need to do some more reading on how MITM work, because it's a bit confusing to me.

However, they did eventually manage to steal 2FA codes via Authy, but you're right, this can only be done after they performed a MITM attack first. This stuff isn't clearly explained and that's why I criticize companies like Group-IB, either they don't want to give too much info, or they are confused themselves.

Rasheed187 · Aug 28, 2022

XIII said: ↑

MITM attack: the hackers use the username and password you entered on the fake website to log in on the real website (and then wait for you to give them the 2FA code as well).
Click to expand...

But now that I think about it, perhaps cookie stealing was involved in this attack. I will open a new topic about this subject.

reasonablePrivacy · Aug 28, 2022

Rasheed187 said: ↑

Yes but this implies that they will first send you to the real website in order to trigger the 2FA code being send. So that's what I don't understand, but I guess I need to do some more reading on how MITM work, because it's a bit confusing to me.

However, they did eventually manage to steal 2FA codes via Authy,
Click to expand...

Once again: TOTP-based 2FA is not interactive in a sense it is not relying on push notifications to a phone.
Maybe just try Authy or other TOTP-based authenticator app just for educational purposes?

Rasheed187 · Aug 28, 2022

reasonablePrivacy said: ↑

Once again: TOTP-based 2FA is not interactive in a sense it is not relying on push notifications to a phone.
Maybe just try Authy or other TOTP-based authenticator app just for educational purposes?
Click to expand...

I haven't got a clue what you mean with this? What I mean, is that 2FA codes only get send for a reason, namely when someone is trying to login to a website, and then I obviously mean a real website not controlled by the hacker. But like I said before, I have a strong feeling that cookie stealing played a role in this attack on Twilio. See link for more info.

https://www.wilderssecurity.com/threads/cookie-stealing-the-new-perimeter-bypass.447085/

Log in or Sign up

Twilio hacked by phishing campaign targeting internet companies

guest Guest

reasonablePrivacy Registered Member

guest Guest

guest Guest

guest Guest

Rasheed187 Registered Member

guest Guest

Rasheed187 Registered Member

guest Guest

Rasheed187 Registered Member

guest Guest

guest Guest

guest Guest

reasonablePrivacy Registered Member

Rasheed187 Registered Member

reasonablePrivacy Registered Member

Rasheed187 Registered Member

reasonablePrivacy Registered Member

XIII Registered Member

Rasheed187 Registered Member

XIII Registered Member

Rasheed187 Registered Member

Rasheed187 Registered Member

reasonablePrivacy Registered Member

Rasheed187 Registered Member

Log in or Sign up

Twilio hacked by phishing campaign targeting internet companies

guest Guest

reasonablePrivacy Registered Member

guest Guest

guest Guest

guest Guest

Rasheed187 Registered Member

guest Guest

Rasheed187 Registered Member

guest Guest

Rasheed187 Registered Member

guest Guest

guest Guest

guest Guest

reasonablePrivacy Registered Member

Rasheed187 Registered Member

reasonablePrivacy Registered Member

Rasheed187 Registered Member

reasonablePrivacy Registered Member

XIII Registered Member

Rasheed187 Registered Member

XIII Registered Member

Rasheed187 Registered Member

Rasheed187 Registered Member

reasonablePrivacy Registered Member

Rasheed187 Registered Member

Useful Searches