"Reddit says hackers accessed employee data following phishing attack", 10 February 2023

Reddit has confirmed hackers accessed internal documents and source code following a “highly-targeted” phishing attack.

A post by Reddit CTO Christopher Slowe, or KeyserSosa, explained that on February 5 the company became aware of the “sophisticated” attack targeting Reddit employees. He says that an as-yet-unidentified attacker sent “plausible-sounding prompts,” which redirected employees to a website masquerading as Reddit’s intranet portal in an attempt to steal credentials and two-factor authentication tokens.

Slowe said that “similar phishing attempts” have been reported recently...

Reddit said that hackers successfully obtained an employee’s credentials, allowing them to gain access to internal documents and source code, as well as some internal dashboards and business systems.

Slowe said the company learned of the breach after the phished employee self-reported the incident to Reddit’s security team. Reddit quickly cut off the infiltrators’ access and began an internal investigation.

Reddit, which has more than 50 million daily users, said its investigation found that some contact information for hundreds of current and former employees, as well as some advertiser information, was also accessed. Reddit said it has “no evidence” that personal user data and other non-public data has been stolen, published or distributed online.

Regardless, Reddit has recommended that all users set up two-factor authentication on their accounts and use a password manager.