Yet another report of a data breach from Mailchimp


Seeing as phishing emails are still the most successful initial access vector for breaches, the compromise of a company that bases its business around email marketing is bad.

What perhaps makes this more interesting is that Mailchimp has confirmed it was breached via a phishing/social engineering campaign itself.

Employees are your first line of defence against a cyber attack, and education and awareness are still critical in tackling even basic phishing emails.