Twilio faces cyber attack and accessed customer accounts

Twilio, the US-based enterprise software vendor company, has faced a cyber attack as someone gained unauthorized access to information related to its customer accounts.
Twilio customersTwilio has more than 150,000 customers, including Facebook and ride-hailing major Uber, according to news media reports. Twilio has more than 275,000 Active Customer Accounts as of June 30, 2022, compared to 240,000 Active Customer Accounts as of June 30, 2021, according to its website.

“On August 4, 2022, Twilio became aware of unauthorized access to information related to a limited number of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials,” Twilio said.

This broad-based attack against its employee base succeeded in fooling some employees into providing their credentials.

The attackers then used the stolen credentials to gain access to some of its internal systems, where they were able to access certain customer data.

“We continue to notify and are working directly with customers who were affected by this incident. We are still early in our investigation, which is ongoing,” Twilio said.

Twilio did not reveal the name of its security partners. Michelle Grover is the Chief Information Officer (CIO) of Twilio. The company did not provide details on the extent of the breach or how many customers were affected.

“We worked with the US carriers to shut down the actors and worked with the hosting providers serving the malicious URLs to shut those accounts down. The threat actors seemed have sophisticated abilities to match employee names from sources with their phone numbers,” Twilio said.

Twilio has reported revenue of $943.4 million (+41 percent) in the second quarter of 2022, and loss from operations of $311.9 million compared with loss from operations of $202.3 million in the second quarter of 2021.