User data remains safe, and Reddit remains operational, the company confirmed.
Reddit has confirmed it recently suffered what seems to have been a fairly significant cyberattack that saw attackers make off with sensitive company data.
In a security notice (opens in new tab), Reddit described the incident as a “sophisticated and highly-targeted phishing attack”.
The company noted that the attackers specifically targeted Reddit, constructing a fake intranet site which, in reality, was nothing more than a phishing landing page designed to steal Reddit employees’ login credentials and multi-factor authentication (MFA) tokens. It seems that no malware (opens in new tab) was used.
Home
United States
USA — software Reddit hacked: Criminals steal source data and internal info in cyberattack