Last updated: February 10, 2023, 8:37 PM IST
Reddit has admitted it was hacked this week, claiming it was a “sophisticated phishing” attack targeting its employees. Reddit shared this update and the details of the leak via a post. The social platform reported that the hacking incident was reported on Feb. 5, in which the security of Reddit’s systems was breached.
That said, Reddit assured that the user database was not exposed to the hacking attempt, but the hackers managed to access some internal documents, code and some internal company systems, Reddit stated in this post.
Reddit further elaborated on the nature of the hack, highlighting that the phishing attack targeted Reddit employees forcing them to click on the link to a website that was a clone of Reddit’s internal gateway. It seems that some employees have fallen into the trap and allowed the hackers to penetrate the internal systems and get their hands on the company’s data.
Reddit is again trying to convince people that it hasn’t seen any evidence to suggest user data was also exposed in the breach. And most of the leaked data contains limited information about hundreds of company contacts and employees. Reddit ran a full analysis of the breach after the employee alerted them to the potential intrusion by malicious parties.
The security team was able to quickly close the loophole and ensure that damage to the systems was limited. The security team first blocked the attacker’s access to the systems and then launched its own investigation into the incident, which has come out with the details mentioned above.
The fact that some employee data has been compromised means that the hackers can try to attack the systems by targeting the victims and sending them more phishing emails that can be used to steal their data and probably also money. Reddit has advised all its users to apply two-factor authentication to keep their accounts safe.
Read all the latest technical news here