HubSpot is investigating incident of hackers targeting their customers
Take action: If you are using HubSpot, enforce SSO and MFA on all your users, and spread the word for people to be very careful and report any communication from HubSpot.
Learn More
On June 28, 2024, HubSpot, a marketing and sales software company specializing in customer relationship management (CRM) and marketing automation, reported that it was investigating a cybersecurity incident.
The announcement followed circulating rumors on social media about a potential cyberattack against the company. On 22nd of June 2024 HubSpot triggered its incident response procedures and began contacting affected customers to revoke unauthorized access and protect data.
HubSpot's Chief Information Security Officer, Alyssa Robinson, confirmed the incident involved bad actors targeting a limited number of customers in an attempt to gain unauthorized access to their accounts.
The specific scope of the incident, including the number of affected customers and the type of data compromised, has not yet been disclosed. HubSpot has not confirmed any communication from the malicious actors involved in the breach.
While no details are disclosed, the general description indicates a repeat of the Snowflake attack where customer's weak credentials were targeted.
Affected customers have been contacted directly by HubSpot. Customers are advised to enforce MFA or use only SSO with enforced MFA and monitor their accounts for any unusual activity. Customers should also follow-up with Hubspot official emails after being contacted since in crisis situation it's easy for attackers to execute a phishing attack.
