Promo.com Data Breach (2020)

Promo.com, a video creation platform for businesses and agencies, has confirmed a data breach after bad actors posted a database containing 22 million user records on a hacking forum. The award-winning video maker, which is partnered with social media venues such as Facebook and Instagram, allows users to create an unlimited number of promotional videos that can be shared online. In a data breach memo, Promo.com announced that it became aware of the security incident on July 21, linking the breach to one of its third-party service providers. “On July 21, 2020, our team became aware that a data security vulnerability on a 3rd party service had caused a breach affecting certain non-finance related Slidely and Promo user data,” the letter reads. “We immediately stopped all suspicious activity and launched an internal investigation to further learn about what happened.” No financial data such as credit cards or billing information was exposed in the breach. However, personal identifiable information were accessed and exfiltrated by the attackers.