Cloud telephony platform Exotel reports data breach

Exotel, a cloud telephony platform is reporting a data breach that potentially compromised client details. The breach involved unauthorized access to Exotel’s cloud infrastructure in Singapore and allegedly affected several large companies, including financial institutions.

Exotel has confirmed the breach, stating that while unauthorized access was identified, the incident did not involve the compromise of sensitive personal or financial information.

Despite assurances from Exotel, additional sources reported that the breach involved the exposure of AWS private keys, leading hackers to access the company’s database and source code. Exotel claims that although call recordings and SMS data are stored on the cloud, these were not accessed in the breach.

As of now, further details on the nature of the breach, specific data exposed, and the exact number of affected customers have not been disclosed.

Those impacted have been notified with recommended steps to mitigate potential risks.