Guessing on the way
Cybersecurity experts have revealed that in recent incidents, hackers have breached Slack accounts by using stolen or leaked API keys.
“Developers often integrate Slack into their automation tools, and during the process, they sometimes accidentally leak these keys to code sharing sites like GitHub or API platforms like Postman,” said Rahul Sasi, CEO of CloudSEK. “For example, in the Disney leak, hackers gained access to social networking sites. This is possible because Slack API keys, by default, have access to public Slack rooms.”
Others added that while it is too early to comment on the cause of such a large breach, common factors such as weak passwords, phishing, and social engineering may not have compromised many Slack channels.
Source link