CVE-2024-3654 Cross-Site Scripting Vulnerability in Teixo by Teimas Global
CVE-2024-32683 WordPress WP Ultimate Review plugin <= 2.2.5 - Insecure Dire
CVE-2024-29969 TLS/SSL weak message authentication code ciphers are added b
CVE-2024-29968 SQL Table names, column names, and SQL queries are collected
CVE-2024-29967 In Brocade SANnav before v2.31 and v2.3.0a, it was observed
CVE-2024-29966 hard-coded credentials in the documentation that appear as t
CVE-2024-29965 Insecure backup
CVE-2024-29964 Docker instances in Brocade SANnav before v2.3.1 and v2.3.0a
CVE-2024-29962 Insecure file permission setting that makes files world-read
CVE-2024-29963 Brocade SANnav contains hardcoded keys used by Docker to rea
News

Zendesk Finds Out About Data Breach Three Years After it Occurred

Giulio Saggin
Giulio Saggin
Tuesday 28 November 2023

Customer service software company Zendesk has been alerted to a data breach that occurred three years ago.

A third party told Zendesk about the attack, which impacted customer accounts that were activated before November 1, 2016. According to a Zendesk blog post, the attack affected the Support and Chat accounts of around 10,000 users. The data that was accessed included email addresses, names and phone numbers of agents and end-users of certain Zendesk products, and agent and end user passwords that were hashed and salted.

Zendesk also said another 700 customer accounts had authentication information accessed, including "Transport Layer Security (TLS) encryption keys provided to Zendesk by customers" and "configuration settings of apps installed from the Zendesk app marketplace or private apps. This may include integration keys used by those apps to authenticate against third party services."

Zendesk - the customers of which number around 145,000 and include Uber, Airbnb, Shopify, Slack, OpenTable and Zoosk - has gone into damage mode.

The company launched an investigation into the incident and engaged the services of a team of external forensic experts, as well as activating their own internal data security response team and protocol, and informing law enforcement and global regulatory agencies.

"Customers are being informed directly and kept up-to-date with the processes put in place to safeguard their accounts and data, while the Zendesk Security teams are also informing them of additional actions they can take themselves," said Maarten Van Horenbeeck, Chief Information Security Officer with Zendesk. "We are also implementing password rotations for all active agents in Support and Chat, and all end users in Support created prior to November 1, 2016."

This isn't the first time Zendesk has been breached. In 2013 a hacker infiltrated the company's systems and accessed the data of numerous customers. At the time Zendesk said they had "taken steps to improve our procedures and will continue to build even more robust security systems."

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Top Stories

Features

What is PCI DSS Requirement 6.1?

What is PCI DSS Requirement 6.1?

There are 12 PCI DSS Requirements that need to be met to attain PCI compliance. One of those, Requirement 6, ensures that an entity has its software protected by up-to-date "vendor-provided security patches".

What is PCI DSS Requirement 6?

What is PCI DSS Requirement 6?

The official explanation of PCI DSS Requirement 6 is summed up as "Develop and maintain secure systems and applications". In other words, an entity attaining PCI compliance needs to have its software protected by up-to-date "vendor-provided security patches".

What is an Approved Scanning Vendor (ASV)?

What is an Approved Scanning Vendor (ASV)?

Discover the Complexities Behind PCI Compliance: Unraveling the Critical Role of External Scans, Internal Vulnerability Checks, and the Cruciality of Requirement 6.1 in Cybersecurity. Explore how ASVs and Services like SecAlerts Play Key Roles in This Compliance Puzzle!

What is a zero-day?

What is a zero-day?

A zero-day refers to a vulnerability in software or hardware that is unknown to the vendor or the public. It's called "zero-day" because once it's discovered, attackers can exploit it immediately, leaving zero days for the vendor to fix it.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203