Klaviyo

Email marketing firm Klaviyo suffered a data breach in August 2022 after hackers gained access to internal systems after stealing an employee's credentials via a phishing attack.

The threat actors downloaded marketing lists for cryptocurrency-related customers including names, addresses, emails, and phone numbers.

They also used internal customer support tools to search for primarily crypto-related accounts and viewed list and segment information for 44 Klaviyo accounts.

Klaviyo immediately notified law enforcement and engaged with a third-party cybersecurity firm to investigate a breach of their network.

Source: https://www.bleepingcomputer.com/news/security/email-marketing-firm-hacked-to-steal-crypto-focused-mailing-lists/

"id": "KLA2019281022",
"linkid": "klaviyo",
"type": "Breach",
"date": "08/2022",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"