Twilio reveals June voice phishing attack that compromised customer information

In the wake of the discovery of an August breach that led to the data of 209 customers and 93 Authy end users being accessed by threat actors, cloud communications firm Twilio disclosed another breach that took place June 29, according to BleepingComputer. According to the company, the threat actor used social engineering to perpetrate the brief security incident, in which an employee was the target of a voice phishing attempt and was tricked into disclosing their credentials. The attacker then used the credentials to access customer contact information for a limited number of customers. Twilio said it removed the attackers access within 12 hours and it notified affected users on July 2. Reporting on the August breach, Twilio said it has concluded the incident investigation, which found that an SMS phishing attack was used to steal employee credentials and access some internal non-production systems. The company said there was no evidence that the attacker was able to access users console account credentials, API keys or authentication tokens and it revealed that it last detected unauthorized activity in its environment on Aug. 9, two days after the incident was reported.