Zendesk, the email and contact support client used by Tumblr, Twitter, and Pinterest, has been compromised, and user’s email addresses have been stolen during the breach. Tumblr is sending out emails informing users of the situation, but Twitter and Pinterest are also seeing the same ill effects.
If you’ve never emailed support for any of the three social networks, then your email address is safe. Those who have sent an email to Tumblr in the last 2.5 years, which is when the blogging service started using Zendesk, your email address is likely compromised.
The silver lining to all this is that passwords are safe, so all the attackers have access to is email addresses They may be able to send you spam or phishing messages, but that’s about it. For Tumblr, some emails may contain the link to a user’s blog in the subject, so the hackers may be able to associate an email with a blog, but there is still little that can be done with that information.
Zendesk is quick to point out that the breach has been fixed, but obviously, any damage the hackers were looking to do has already taken place.
Twitter uses a technology called Domain-based Message Authentication or DMARC. This makes it difficult for people running phishing scams to fake an email from Twitter. Regardless, if you’ve emailed support for any of these three websites, you should be extra careful about what emails you open, as your email address is likely in the hands of the wrong people. Of course, you should be cautious with emails at all times, but right now it is extra important.
Source: Digital Trends