Attacks Cloud Data Executive Decisions IoT Malware Mobile Network Security Strategy Threat Defense
Hub Image

IOTW: Signal users directly targeted in Twilio phishing attack

Phishing attack on Twilio targets almost 2,000 Signal users

Add bookmark
Olivia Powell
Olivia Powell
08/17/2022
Signal users directly targeted in Twilio phishing attack

Instant messaging service Signal has announced that around 1,900 users may have had their phone numbers revealed to hackers due to a phishing attack on communications API developer Twilio. Twilio provides Signal with phone number verification services.

During the attack, a hacker gained unauthorized access to Twilio’s customer support console, allowing them to view phone numbers that were registered to a Signal account and the SMS verification code used to register it.

The bad actor then may have attempted to re-register their number to a different device or linked their number with a Signal account. 

Signal noted that during the hack, “the attacker explicitly searched for three numbers” and the company has “received a report from one of those three users that their account was re-registered".

The hacker did not gain access to profile information, contact lists or message history.

Signal said in a statement that it will be reaching out to the 1,900 users affected directly via SMS, which it predicts will be completed by 16 August. The company urged customers to enable the apps registration lock feature to protect against potential future attacks. 

Tags: Twilio Signal phishing phishing attack data breach hacking hacker

Recommended

info@cshub.com/r/n

We hope you enjoy All Access from CS Hub!!<\/p>\r\n<p>Best Regards,<\/p>\r\n<p><a href=https://www.cshub.com/"https:////www.cshub.com///" target=\"_blank\">CS Hub Team<\/a><\/p>\r\n<p>P.S. Be sure to check out our other upcoming <a href=https://www.cshub.com/"https:////www.cshub.com//events?filter_format=ONLINE\%22 target=\"_blank\">All Access events here<\/a>.<\/p>\r\n<p>--------------------------------<\/p>\r\nConnect with us on Social Media: <a href=https://www.cshub.com/"https:////www.linkedin.com//groups//12067996///" target=\"_blank\">LinkedIn<\/a> | <a href=https://www.cshub.com/"https:////twitter.com//CSHubUSA/" target=\"_blank\">Twitter<\/a><\/p>\r\n<p>--------------------------------<\/p>\r\n<p>FAQS<\/p>\r\n<p><b>Can I invite my colleagues?<\/b><br>Yes of course! Please send them this link so they can register for free! [WebUrl]<\/p>\r\n\r\n<p><b>How do I access the sessions?<\/b><br>\r\nAll Access is run on Zoom Events. You should receive an email shortly from Zoom Events with your unique All Access link to the event lobby. Please hold on to that email ahead of the event. We\u2019ll also send you a reminder 24 hours before we go live!<\/p>\r\n\r\n<p><b>Will the agenda be updated?<\/b><br>\r\nYes, the agenda will be continuously updated on the website with the latest sessions & speakers. As we get closer to the event, also look out for our weekly updates which will also include the latest updates information and link to access the event.<\/p>\r\n<p><b>Can I access the sessions On Demand?<\/b><br>\r\nEvery session will be available after the event via the event lobby. We\u2019ll also send you a reminder about the On Demand sessions which will be sent to you after the event is over.<\/p>\r\n<p>--------------------------------<\/p>\r\n<p>RELATED RESOURCES TO READ BEFORE YOUR EVENT<\/p>\r\n<ul>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//executive-decisions//reports//cs-hub-mid-year-market-report-2022?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">CS Hub Mid-Year Market Report 2022<\/a><\/li>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//security-strategy//reports//ciso-strategies-for-proactive-threat-prevention?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">CISO strategies for proactive threat prevention<\/a><\/li>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//security-strategy//reports//how-to-strengthen-email-security-and-protection-against-advanced-ransomware-attacks?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">How to strengthen email security and protection against advanced ransomware attacks<\/a><\/li>\r\n<\/ul>","event_registration_srs_confirmation_email":null,"assets_from_cdn":true},"bant_disabled":1,"sponsorship_disclaimer":null,"sponsorship_disclaimer_text":null,"sponsorship_disclaimer_checkbox_disabled":0,"ext_treat_id":null,"recording_url":null,"file_attachment":null,"ingo_enabled":null,"ingo_activator_id":null,"ingo_autofiller_id":null,"ingo_amplifier_id":null,"ingo_authorizer_id":null,"restricted_content":0,"featured_events_embedded":[],"featured_content_embedded":[{"id":"62f4e94acbeb1317b057d394","name":"IOTW: Twilio suffers data breach following phishing attack","description":"The company\u2019s employees were directly targeted by a phishing attack disguised to look like it came from Twilio\u2019s IT department","file":null,"url":"\/attacks\/news\/iotw-twilio-suffers-data-breach-following-phishing-attack"},{"id":"62ea9fab1b78ee593e6c7ffd","name":"IOTW: Microsoft links Raspberry Robin malware to hacking group EvilCorp","description":"The USB-based worm has been linked to malvertising activity by Russian hacking group EvilCorp","file":null,"url":"\/attacks\/news\/iotw-microsoft-links-raspberry-robin-malware-to-hacking-group-evilcorp"},{"id":"62e163ec41618908fd2621ca","name":"IOTW: Uber reaches settlement following cover up of data breach","description":"The ride-sharing app has admitted to covering up a major data breach in 2016 that affected 57 million users","file":null,"url":"\/attacks\/news\/iotw-uber-reaches-settlement-following-coverup-of-data-breach"},{"id":"62d96c67be966e20ca4a6713","name":"IOTW: FBI warns fake cryptocurrency apps have defrauded investors of $42.7m","description":"The FBI has warned cryptocurrency investors to avoid fraudulent apps that may initially appear legitimate","file":null,"url":"\/iot\/news\/itow-fbi-warns-fake-cryptocurrency-apps-have-defrauded-investors-of-427m"},{"id":"62cefa9eba4e7223597b6215","name":"IOTW: Marriott International suffers latest in series of data breaches","description":"Hospitality company Marriott International reports data breach result of social engineering hack","file":null,"url":"\/attacks\/news\/iotw-marriott-international-suffers-latest-in-series-of-major-data-breaches"}],"featured_content_portal_embedded":null}" >

FIND CONTENT BY TYPE

News Case Studies Interviews White Papers Videos

Cyber Security Hub COMMUNITY

About Us Power10 Contact Us Advertise with us Cookie Policy User Agreement Become a Contributor All Access from CS Hub Become a Member Today Media Partners

ADVERTISE WITH US

Advertise Now

JOIN THE Cyber Security Hub COMMUNITY

Join CSHUB today and interact with a vibrant network of professionals, keeping up to date with the industry by accessing our wealth of articles, videos, live conferences and more.

Cyber Security Hub, a division of IQPC

© 2026 All rights reserved. Use of this site constitutes acceptance of our User Agreement, Privacy Policy and Cookies Settings.

Careers With IQPC | Contact Us | About Us | Cookie Policy