A Reddit employee’s data was stolen in a targeted phishing attack, a Reddit administrator revealed, and hackers gained access to the company’s systems on February 5th.
Apparently, the company’s employees were receiving instant directions to a website that mimicked the appearance and behavior of its intranet site, designed as such to steal people’s login information and security codes. While one employee fell victim to this operation, he reported it to the company immediately, allowing the security team to respond quickly and cut off the intruders’ access.
A company spokesperson said the actors had access to some internal documents, programming code, as well as some internal information and business systems. Contact information for hundreds of contract companies, current and former employees, as well as some advertisers, was also exposed.
However, the spokesperson confirmed that the security team investigating the incident found no evidence that the users’ passwords or any of their data had been compromised. He added that the site continues to investigate the situation and monitor it closely.
