Cloud-based accounting service Xero has told its customers to reset their passwords after a “small number” of users had their accounts compromised. At the time of writing there was no obvious advisory on Xero’s website, blog or Twitter account, but news of the security warning was sent out to customers in an email. The email claims that Xero has seen an increase in phishing attacks exploiting the firm’s brand, and that a “small number of customers have had their Xero accounts compromised.” Clearly, that’s far from ideal as businesses will have a great deal of information about their finances, clients and suppliers inside their Xero account.
View full story
ORIGINAL SOURCE: Graham Cluley