Threat Post

Slack Plugs Token Security Hole

Slack fixes a security loophole that opened hundreds of corporate Slack accounts to the public. Popular collaboration and communication firm Slack rushed to plugged a security hole in its platform ...
Bleeping Computer

State-sponsored hackers abuse Slack API to steal airline data

A suspected Iranian state-supported threat actor is deploying a newly discovered backdoor named 'Aclip' that abuses the Slack API for covert communications. The threat actor's activity started in 2019 ...