{"id":127212,"date":"2023-01-27T07:45:29","date_gmt":"2023-01-27T12:45:29","guid":{"rendered":"https:\/\/rbach.net\/?p=127212"},"modified":"2023-01-27T13:53:13","modified_gmt":"2023-01-27T18:53:13","slug":"what-you-need-to-know-about-mailchimp-security","status":"publish","type":"post","link":"https:\/\/rbach.net\/index.php\/what-you-need-to-know-about-mailchimp-security\/","title":{"rendered":"What You Need to Know About MailChimp Security"},"content":{"rendered":"\r\n

\"What<\/a>Just in time for Data Privacy Day<\/a>. Mailchimp<\/a><\/strong>, one of the largest email service-providers<\/strong> worldwide with 13 million active customers<\/a>. suffered a security breach<\/a><\/strong>. On January 11, 2023 the Mailchimp security team reported that an unauthorized actor download the data of 133 customers of the Mailchimp service.<\/p>\r\n

Mailchimp data leak<\/h3>\r\n

\"Data<\/a> The Mailchimp security team identified an unauthorized actor had accessed tools used by Mailchimp customer-facing teams for customer support and account administration. The unauthorized actor conducted a social engineering attack on Mailchimp employees and contractors, and obtained access to Mailchimp accounts using employee credentials compromised in that attack.<\/p>\r\n

Impacted organizations include WooCommerce<\/a>, online gambling site FanDuel<\/a>, Crypto darlings Yuga Labs<\/a> and the Solana Foundation<\/a>.<\/p>\r\n

\"CSC405:<\/a>Mailchimp says they temporarily suspended account access for Mailchimp accounts where they detected suspicious activity to protect our users\u2019 data. They have notified the primary contacts for all affected accounts on January 12. Mailchimp has been working with their customers to help them reinstate their accounts.<\/p>\r\n

Recent data breaches<\/h3>\r\n

MailChimp has announced several data breaches in recent months. In August 2022<\/a>, a cyberattack targeted its cryptocurrency-related customers. Mailchimp also revealed a security incident<\/a> in March 2022.<\/p>\r\n

\"dataSpeculation is swirling online<\/a> about the security of parent company Intuit<\/a> other product lines (which includes TurboTax<\/a>, Credit Karma<\/a> and Quickbooks<\/a>). TurboTax suffered its own security breach<\/a> in 2021. Questions<\/a> are also being raised about a possible central backdoor into Intuit, which the company denies.<\/p>\r\n

If you have questions regarding a notice you received or the incident in general, please reach out you can email ciso@mailchimp.com<\/a>. The company has not announced the appointment of a new CISO since Siobhan Smyth left the position in August 2022 shortly after the August 2022 was announced.<\/p>\r\n

rb-<\/em><\/h3>\r\n

\"multi-factorInformation exposed in data breaches like this is commonly used by attackers to target users with phishing attacks or attempt to reset passwords to gain account authorization. This is why multi-factor authentication<\/a> (MFA) can help. Even if the bogus password resets were successful the MFA can prevent the attacker from going further.<\/em><\/p>\r\n

How you can help Ukraine!<\/a><\/strong><\/em><\/p>\r\n

Related article<\/strong><\/p>\r\n