In a federal filing, Slack, a popular workplace collaboration app, revealed that it is open to hacking attacks. And Slack isn’t just referring to the basic hacks all programs are open to. These attacks can be orchestrated by some nasty villains.
A compromised Slack account from a CEO or executive level position could cause as many security issues as a compromised email account. This hack led Slack to implement two-factor authentication.
Slack also noticed some suspicious actives on user accounts, suggesting at least some accounts became compromised. A compromised Slack account from a CEO or executive level position could cause as many security issues as a compromised email account. This hack led Slack to implement two-factor authentication.
Is slack a secure communication tool?
Like email, Slack is an incredibly useful and productive communications tool for businesses. Like email, businesses will not stop using Slack because of the security concerns. Slack has provided security vendors a way to create security solutions for Slack using their open source APIs.
Here is what my research found. Slack does not give you the ability to individually encrypt your messages. There’s a way around that, however, in the form of a free browser extension called Shhlack. The extension, available for Chrome, lets you and your coworkers encrypt any and all of your messages.
Does slack encrypt my data?
By default, Slack encrypts data at rest and data in transit for all of our customers. We further protect your data with tools like Slack Enterprise Key Management (Slack EKM), audit logs, and integrations with top data loss prevention (DLP) providers.
Is slack safe for your business?
This made it instantly attractive to businesses looking for an easy to way to instantly share messages, with integrations with other business apps. However, in 2015 Slack was hacked, revealing the holes in its security. The company announced that over four days it’s systems had been hacked, compromising some of its users’ data.
Can slack be used for phishing?
In 2017, a group of hackers used an account pretending to be a ‘Slackbot’, which sent out a phishing attack directing people to a fake site where their financial details were collected. These types of phishing attacks through Slack could be potentially much more damaging than a similar campaign would be through email.
Is it safe to share passwords on slack?
Under no circumstances should employees ever share passwords on Slack. If they need to pass on access to different programs, password management solutions like Password Boss are a safer, more easily controlled choice. Turn on two-factor authentication.
Is there a way to send private messages on slack?
Instead, try creating a private Slack channel (with a short retention setting!), getting the phone numbers of the people you want to chat with, and then messaging them on the encrypted messaging app Signal.