On May 3rd, 2020, at approximately 03:00 am (UTC +2), a remote attacker managed to exploit a critical vulnerability in a 3rd party system that is a crucial part of LiveAgent’s infrastructure.
The attack investigation lasted approximately 16 hours to ensure our customer’s data was safe. There’s no indication that the customer’s data was exploited, tampered with, or leaked. According to our insights, the attacker’s goal was to mine cryptocurrencies.
After the attack was confirmed, our support team immediately shut down most of our servers to prevent any further data vulnerability. The issue was escalated to system admins, as well as top management, and immediate steps were taken to mitigate the attack.
The following steps were taken to mitigate the attack:
To ensure that an incident like this won’t happen again, our teams implemented:
Yes, there were no break of rules in terms of GDPR. If it was a case we would have already informed a relevant government office.
We apologize for any inconvenience this attack may have caused for your business. We appreciate your patience and understanding and hope to make it up to you with years of excellent service.
Be the first to receive exclusive offers and the latest news on our products and services directly in your inbox.
We appreciate your recent sign up for a LiveAgent.
A message will be sent to your email address containing login details, right after your account is installed.
If you wait for a while, after installation is complete you will be able to access your account directly from here.
After the process is over, we will send the login details to your mailbox.