Major Support Company Platform Suffers Cybersecurity Setback
ZenDesk is one of the most trusted platforms for businesses for IT help and assistance, but recently the organization learned of a major data breach affecting at least 10,000 of their clients. This breach was discovered on 24 September 2019. Unfortunately, this intrusion has been reported to have existed since 2016.
ZenDesk has maintained that no passwords or personal data have been used even after the breach was discovered. If true, this is good news for clients.
The data that would’ve been accessed is as follows:
- Agent phone numbers, emails, and names
- Additionally, some users had similar information potentially compromised
- Passwords, although no reported loss of passcodes has occurred
ZenDesk has discovered no intrusions regarding support tickets or the above information, so the length of damage is minimal.
According to ZenDesk, there were support accounts that were accessed in some capacity. An estimated 700 customer accounts were affected regarding:
- Encryption in the Transport Layer Security (TLS)
- App configuration settings for the ZenDesk app or its marketplace apps along with keys for purchasing apps
Anyone targeted should have received an email at the time of discovery. Additionally, for those who have reached out, ZenDesk has encouraged contacting them at firstname.lastname@example.org. This continues the trend of hackers and malicious third parties increasingly targeting chat services and software platforms.
This is just another target in a long list of potentially vulnerable platforms. Hackers are using increasingly aggressive tactics to achieve their end goals, regardless of business size. Primarily, this is because ransomware is an exceptionally effective method at reaping rewards with little cost to the perpetrators, along with being a difficult malware type to combat.
ZenDesk is another warning sign that all companies must remain vigilant for the latest cyber threat. To learn more, you can contact us at Bytagig.