Slack has been Hacked - The Team Communication Platform Website User Data Stolen
Team communication platform, Slack, located at www.slack.com, has been hacked. Hackers were able to gain unauthorized access to a Slack database storing user profile information. Slack has since blocked the unauthorized access and made additional changes to their technical infrastructure to prevent future incidents. They have released two factor authentication and strongly encourage all users to enable that security feature.
Slack has published the following information about the data breach:
- Slack maintains a central user database which includes user names, email addresses, and one-way encrypted (“hashed”) passwords.in addition, this database contains information that users may have optionally added to their profiles such as phone number and Skype ID.
- Information contained in this user database was accessible to the hackers during this incident.
- We have no indication that the hackers were able to decrypt stored passwords, as Slack uses a one-way encryption technique called hashing.
- Slack’s hashing function is bcrypt with a randomly generated salt per-password which makes it computationally infeasible that your password could be recreated from the hashed form.
- Our investigation, which remains ongoing, has revealed that this unauthorized access took place during a period of approximately 4 days in February. As soon as the evidence was uncovered, we started communication with the affected teams. The announcement was made as soon as we could confirm the details and as fast as we could type.
- No financial or payment information was accessed or compromised in this attack.
Please click here visit Slack's website for more information.
Check the comment section below for additional information, share what you know, or ask a question about this article by leaving a comment below. And, to quickly find answers to your questions, use our search
Note: Some of the information in samples on this website may have been impersonated or spoofed.
Comments, Questions, Answers, or Reviews
To protect your privacy, please remove sensitive information from your comments, questions, or reviews. We will use your IP address to display your approximate location to other users when you make a post. That location is not enough to find you.
Your post will be set as anonymous because you are not signed in. An anonymous post cannot be edited or deleted, therefore, review it carefully before posting. Sign-in.
Write Your Comment, Question, Answer, or Review