Slack Technologies is something companies all over the United States have come to rely on for in-house communication. The service, prides itself on workplace communication and chatting, has announced that they have undergone an extensive hack that has left millions of individual’s private information and potential workplace communications hanging in the balance.
The company announced that amongst the information that was likely lost, was communication between users. That’s a problem because Slack is a tool that users are working with to replace corporate email eventually, because as the makers of Slack have pointed out, it is far more convenient and modern than email. Going forward though, their sales pitch might have just gotten a little more complicated.
Valued at $2.76 billion and having just undergone an extensive round of venture capital investing. However, even as the breach is just becoming public knowledge, those speculating aren’t entirely sure if that breach was disclosed before the round of investing, or if investors learned about the breach afterward. Given the stature of Slack right now, it would be safe to assume that either way, this is a very bad situation for them as an organization.
In a written statement, Slack spokesperson said, “If you have not been explicitly informed by us in a separate communication that we detected suspicious activity involving your Slack account, we are very confident that there was no unauthorized access to any of your team data (such as messages or files).” That does make the situation seem a lot more black and white. If nothing else is should make a broad range of those individuals, who might have been impacted, to feel a lot more comfortable about their situation.
That being said, it doesn’t really do a lot to answer anything in a concrete way. Slack did point out that they believe around 500,000 users information was compromised, but didn’t specify much beyond that. It would be safe to assume at this point that the more individuals who were impacted – the likelier it would be that Slack would take more aggressive steps to play damage control. Right now, it seems like they’re anything but – overly concerned about their unfortunately set of circumstances. After the breach, Slack has encouraged users to turn on two-factor authentication, especially in light of this debacle.
Other than personal information, messages, and potential data loss it’s unclear how extensive the damage was to those who were impacted. It’s also unclear if any of that information was used for negative purposes. At this point it might be safe to assume that some users could see suspicious activity, but at the very least – taking measures like changing passwords – would be a good practice – to start with.