Readers will recall that cloud communications firm Twilio disclosed on August 7 2022 that hackers had accessed user data following a sophisticated social engineering attack that saw employees targeted with SMS-phishing (“smishing”) text messages. Attackers sent current Twilio staff and former employees SMS text messages that purported to come from the company’s IT department, telling them that their passwords had expired.
Read full article on Graham Cluley