cyber Breach

Intuit Mailchimp

May 12, 2022 1 min read
Intuit Mailchimp

Email marketing firm MailChimp was targeted by hackers in a data breach incident.

The hackers gained access to internal customer support and account management tools to steal audience data and conduct phishing attacks.

The employees were also targeted in a social engineering attack that resulted in them losing their credential details.

These credentials were apparently used to access 319 MailChimp accounts and export audience data from 102 customer accounts and also to access API keys for a number of customers.

MailChimp notified all the impacted customers and recommended they enable two-factor authentication on their accounts.

Source: https://www.bleepingcomputer.com/news/security/hackers-breach-mailchimps-internal-tools-to-target-crypto-customers/

TPRM report: https://scoringcyber.rankiteo.com/company/intuitmailchimp

"id": "int224512522",
"linkid": "intuitmailchimp",
"type": "Breach",
"date": "04/2022",
"severity": "80",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 102,
                        'industry': 'Email Marketing',
                        'name': 'MailChimp',
                        'type': 'Company'}],
 'attack_vector': ['Social Engineering', 'Phishing'],
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': 102,
                 'type_of_data_compromised': ['Audience Data', 'API Keys']},
 'description': 'Email marketing firm MailChimp was targeted by hackers in a '
                'data breach incident. The hackers gained access to internal '
                'customer support and account management tools to steal '
                'audience data and conduct phishing attacks. The employees '
                'were also targeted in a social engineering attack that '
                'resulted in them losing their credential details. These '
                'credentials were apparently used to access 319 MailChimp '
                'accounts and export audience data from 102 customer accounts '
                'and also to access API keys for a number of customers. '
                'MailChimp notified all the impacted customers and recommended '
                'they enable two-factor authentication on their accounts.',
 'impact': {'data_compromised': ['Audience Data', 'API Keys'],
            'systems_affected': ['Customer Support Tools',
                                 'Account Management Tools']},
 'initial_access_broker': {'entry_point': 'Social Engineering'},
 'motivation': 'Data Theft',
 'post_incident_analysis': {'corrective_actions': ['Enable Two-Factor '
                                                   'Authentication'],
                            'root_causes': ['Stolen Credentials',
                                            'Social Engineering']},
 'recommendations': ['Enable Two-Factor Authentication'],
 'response': {'remediation_measures': ['Notified Impacted Customers',
                                       'Recommended Two-Factor '
                                       'Authentication']},
 'title': 'MailChimp Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Stolen Credentials'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.