Enterprise software vendor HubSpot says it’s “actively investigating and blocking attempts” to hack into customer accounts and warned that at least 50 HubSpot targets have already been breached.
“While our investigation is still underway, we believe based on our initial assessment that the bad actors were able to gain unauthorized access to less than 50 HubSpot accounts,” HubSpot said in a brief notice posted online.
The Cambridge, Mass.-based HubSpot, which sells specialized tools for sales and marketing teams, said the unidentified hackers are continuing to target a limited number of HubSpot customers and attempting to gain unauthorized access to their HubSpot accounts.
The company said it has contacted impacted customers and taken necessary steps to revoke the attacker’s access to customer data.
“As of 4:00 pm ET, June 28, we have seen no new instances of unauthorized access in the last 24 hours, and we have contacted all impacted customers at this time,” HubSpot said, insisting the impact will be isolated to a small subset of the HubSpot customer base.
This isn’t HubSpot’s first brush with malicious hackers targeting its customer base. In 2022, the company said a “bad actor” managed to hack into an employee account and use that access to export contact data from HubSpot accounts.
Related: Cryptocurrency Services Hit by Data Breach at HubSpot
Related: Microsoft Alerts Customers to Email Theft in Midnight Blizzard Hack
Related: Millions of OpenSSH Servers Vulnerable to Remote regreSSHion Attack
Related: TeamViewer Hack Officially Attributed to Russian Cyberspies