Social news and discussion website Reddit has reported being hit by a “sophisticated phishing campaign that targeted Reddit employees” whereby a single employee’s credentials were obtained, and an attacker gained access to internal documents and code, as well as some internal dashboards and business systems. Following several days of investigation, Reddit has announced “we have no evidence to suggest that any of your non-public data has been accessed, or that Reddit’s information has been published or distributed online”.
“Many thanks again for all of your work getting us up and running in the cloud and getting us organised, another happy customer.”
- Karen Cotton -