SendGrid is resetting the passwords for all of its customers after an investigation showed a cyberattack it sustained earlier this month was more extensive than first realized.
The company, which provides a service for companies to mass email their customers without getting blocked, said earlier this month an account of a Bitcoin-related customer was compromised and used to send phishing emails.
Further investigation by FireEye’s Mandiant division had showed the attackers also compromised a SendGrid employee’s account and accessed internal systems on three days in February and March, wrote David Campbell, the company’s chief security officer.