Anyone in marketing will have heard of this; Mailchimp is a marketing tool used to blast emails and provides other marketing tools to help the customer. It was founded in 2001 by Mark Armstrong and Ben Chestnut.
The breach was what’s known as a social engineering attack. A social engineering attack is a form of phishing. These actors use a range of scams, such as scareware, baiting, or spear phishing, that have some psychological undertone. It’s easy to study basic human behaviors, so hackers are doing it to make their ‘jobs’ easier.
The breach occurred with the most popular hacking method of all time; a phishing scam. “In response to a recent attack targeting Mailchimp’s crypto-related users, we’ve taken proactive measures to temporarily suspend account access for accounts where we detected suspicious activity while we investigate the incident further,” Mailchimp states on its website. “We did not suspend accounts based on their industry, and we are committed to continuing to serve crypto companies.”
This breach occurred on August 8th, 2022.
There were only a few hundred Mailchimp customers affected. If Mailchimp temporarily shut down your account and you received a notification email from Mailchimp, you were affected by the breach.
The breach affected about 214 customer files. These customers, as previously mentioned, were notified of the violation by Mailchimp, which has taken every possible action to help its current and future clients.