Customer support outsourcing platform Zendesk was hacked on Thursday and data was stolen from various customers. Among customers to have data stolen were users of Tumblr, Twitter, and Pinterest.
In an official blog post Zendesk said the hacker managed to download email addresses and subject lines from support emails to clients.
Tumblr admitted that emails sent to its support, abuse, DMCA, legal, enquiries, and law enforcement mail boxes were vulnerable to data loss. Tumblr warns that in some cases a users email address may be paired with their website and other sensitive email header information.
In an email to customers Tumblr writes:
“We’re working with law enforcement and Zendesk to better understand this attack. Please monitor your email and Tumblr accounts for suspicious behavior, and notify us immediately if you have any concerns.”
Pinterest and Tumblr also sent similar emails to customers affected by the Zendesk hack.
Zendesk and law enforcement are working together to find the hacker. In the Zendesk blog post the company notes:
“We are also completely committed to working with authorities to bring anyone involved to justice and make certain we fully understand what happened. As this process unfolds, we aim to update our customers in as transparent and timely a manner as possible about new developments.”