Few Reddit Employees Accounts got Compromised Leading to a Hack

Recently, Reddit announced that their employee accounts, which were on the cloud and source code hosting providers, were hacked. This has led to the exposure of various backups, logs and source code of the users.

As per the company's blog post, the hacking attack took place in the month of June. The hackers targeted and compromised some of the Reddit employees, which helped them to access the data belonging to the Reddit users from 2007 and prior to that. Reddit's "email digests" were also grabbed by the hacker from June onwards, which help them to access various posts suggested by Reddit to the users on the basis of their interest areas. The accessed logs can also help the hackers to connect with the users through email addresses and the usernames, as posted on August 1, 2018, by thewrap.com.

Though, Reddit will not reveal the number of accounts that were actually compromised through this hack. However, Reddit told that the company will inform the affected users who have suffered the data loss from past history. Thus, they are informing the affected users who are maintaining their accounts on Reddit's website prior to 2007.

The impacted users were informed by Reddit to search their inboxes for finding whether they have received any "email digest" from Reddit between June 3 and June 17 of this year. As per Reddit, this is the time when the hackers have obtained the detailed logs on the identity of the users and their activities.

In order to carry out the investigation process on the hacking attack, Reddit is working with the law enforcement regarding the matter. In the meantime, Reddit has asked its users to secure their accounts using 2FA through an authenticator app. Reddit is contacting the impacted users directly, however the company did not disclosed on the details of how they will reach out to the users directly to inform them about the risk.

Christopher Slowe, Chief Technology Officer, says that "Reddit source code, internal logs, configuration files and other employee workspace files" were breached - thus providing the hacker a clear view of the company's practices.

» SPAMfighter News - 8/8/2018