In March 2015, the business messaging service and enterprise communications hub, Slack, was breached and a database of usernames and passwords compromised. The attackers were able to insert code to log passwords in plain text as they were typed. Unsurprisingly, Slack was quick to reset passwords of users that were confirmed to have been impacted by the ensuing investigation. A little more surprising, however, is the confirmation that Slack is now resetting passwords for another 100,000 users in response to “new information” about that hack from four years ago.
Source: Forbes