A fix has been implemented and we are monitoring the results.
Posted Sep 15, 2022 - 05:55 UTC
Identified
The issue has been identified and a fix is being implemented.
Posted Sep 15, 2022 - 05:54 UTC
Investigating
Thursday 15th September, 2022; 0130AM EST This communication intends to apprise you of a recent Security incident that affected our website (www.helpshift.com) and the domain (helpshift.com).
Due to a vulnerability in a certain plugin on our Wordpress site, certain files on our Wordpress website were accessed in an unauthorised manner, which allowed malicious actors to use our domain to send out malicious content to the wider internet. As a result, our website and domain (helpshift.com) were put on the blacklist, which affected the reputation of our domain and subsequent delivery of emails originating from our domain.
Since being notified of this incident, we have been able to successfully identify and remove the malicious content from our website and have run security scans to confirm the same. At the same time, we have strengthened the existing security controls on our website to prevent this from reoccurring.
We are currently working with the various external security vendors to reassess our domain and remove our domain entries from their blacklists. This will eventually help in improving the security reputation of our domain.
As of now, we do not have reason to believe that this issue has impacted any of our Customers data or their end users data.
We thank you for your patience in this regard. If you have any questions with regards to this issue, please feel free to reach out to our support team at support@helpshift.com.
Posted Sep 15, 2022 - 05:54 UTC
This incident affected: Web Support Page and Analytics Dashboard.