Monday, February 17, 2025
HomeData BreachClick2mail Hacked - Hackers Starts Sending Spam Emails To Stolen Email...

Click2mail Hacked – Hackers Starts Sending Spam Emails To Stolen Email Address of Users

Published on

SIEM as a Service

Follow Us on Google News

Famous Email service provider Click2mail suffering from a massive data breach that leaked their customer sensitive personal information, and the attackers used the stolen email addresses to send spam emails.

October 4th, 2019, Click2Mail learned that their customer’s data were being used by unknown parties who have abused the customer’s email address to send the massive spam emails to Click2Mail customers.

Attackers may have been stolen Click2Mail customer personal information, including name, organization name, account mailing address, email address, and phone number.

Since Click2Mail does not store any credit card data, there is no financial data involvement with this breach.

The breach was initially reported by a former customer of Click2Mail to databreaches(.)net in which, he added the information about the suspicion that Click2Mail may have been hacked, sprung a leak, or shared their data with some firm that hadn’t protected it properly.

According to the Click2mail report via Databreaches(.)net, ” A professional cybersecurity firm has been retained to conduct a full forensic review and analysis of our IT systems and security protocols. Our goal is to assure that our systems are as secure as possible to protect your personal information and mailing data.  “

President and CEO of Click2Mail said ”  that slightly more than 200,000 Click2Mail.com registrants will be receiving notifications, which will be sent out in segments, not all at once. Garvey also explained that prior to receiving this site’s email inquiry, they had received an email from a helpful customer who had used a tagged email address and was getting spam.  “

Click2Mail advised all their users that don’t respond to any suspicious emails or click on any active links contained in messages sent by unknown senders.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.

Also Read: What is Spear Phishing Attack – A Complete Guide for Motives, Techniques & Prevention Methods

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Ransomware Gangs Encrypt Systems 17 Hours After Initial Infection

Ransomware gangs are accelerating their operations, with the average time-to-ransom (TTR), the period between...

Stealthy Malware in WordPress Sites Enables Remote Code Execution by Hackers

Security researchers have uncovered sophisticated malware targeting WordPress websites, leveraging hidden backdoors to enable...

Xerox Printer Vulnerability Exposes Authentication Data Via LDAP and SMB

A critical security vulnerability in Xerox’s Versalink C7025 Multifunction Printer (MFP) has been uncovered,...

New XCSSET Malware Targets macOS Users Through Infected Xcode Projects

Microsoft Threat Intelligence has identified a new variant of the XCSSET macOS malware, marking...

Supply Chain Attack Prevention

Free Webinar - Supply Chain Attack Prevention

Recent attacks like Polyfill[.]io show how compromised third-party components become backdoors for hackers. PCI DSS 4.0’s Requirement 6.4.3 mandates stricter browser script controls, while Requirement 12.8 focuses on securing third-party providers.

Join Vivekanand Gopalan (VP of Products – Indusface) and Phani Deepak Akella (VP of Marketing – Indusface) as they break down these compliance requirements and share strategies to protect your applications from supply chain attacks.

Discussion points

Meeting PCI DSS 4.0 mandates.
Blocking malicious components and unauthorized JavaScript execution.
PIdentifying attack surfaces from third-party dependencies.
Preventing man-in-the-browser attacks with proactive monitoring.

More like this

Indian Post Office Portal Leak Exposes Thousands of KYC Records

The Indian Post Office portal recently exposed the sensitive Know Your Customer (KYC) data...

Global IoT Data Leak Exposes 2.7 Billion Records and Wi-Fi Passwords Worldwide

A massive security lapse has exposed over 2.7 billion records, including sensitive Wi-Fi credentials,...

OpenAI Data Breach – Threat Actor Allegedly Claims 20 Million Logins for Sale

Threat actors from dark web forums claim to have stolen and leaked 20 million...