Overview of February 7th Outage

Khoros Alumni (Retired)

5 years ago

On the evening of Friday, February 7th, we suspended access to our Marketing platform. I wanted to share a little more color on the incident and the actions we’ve taken since.

The Friday incident was precipitated by a bad actor gaining credentialed access to two customer accounts on our platform, which they secured as the result of an aggressive phishing attack. This was the second time in two weeks that Khoros suspended access to the Marketing platform, and we are painfully aware of the disruption this created, particularly on the heels of the first incident. We acted with your security as our foremost concern once again, but we realize that this conservative approach is not sustainable. We have made updates to the system and our response protocols to ensure that, going forward, we will protect your brands with the minimal disruption possible for your business.

Several of you have asked if the phishing attack means that multi-factor authentication (MFA) failed. It did not. MFA still requires human intervention to enter passcodes and can therefore still be exploited by sophisticated phishing. Teams must stay vigilant about all mediums of communication (mobile, text, phone, personal social media, email, etc.) -- phishing comes in many forms! We will continue to support you on this front, and please know that your Khoros team is committed to being a resource for you on managing this risk.

If you have additional questions or want to speak to someone at Khoros directly, we encourage you to reach out to your account team or email khorosmarketingplatform@khoros.com.

Updated 5 months ago

Version 3.0

marketing

product updates

JustinC

Khoros Alumni (Retired)

Joined November 27, 2013

View Profile

Release Notes

Review release notes and updates for all of our products! Select a label to browse by product or resource type.

llucas
Mentor
5 years ago
How do we gain access to the mobile app??? I have Instagram posts that require the mobile push.
llucas
Mentor
5 years ago
CaseyM but we have SSO through Okta, so how do I get the mobile app up and running?
EricaL
Helper
5 years ago
The mobile app is still down!!!!
CaseyM
Khoros Alumni (Retired)
5 years ago
Hi llucas and EricaL. Thank you for raising your hands regarding the Social Marketing mobile app. Login access to the mobile app has been reinstated for customers that use SSO for login.

At this time, for non-SSO customers, you can access the Social Marketing product through your mobile browser. While this does not support the Instagram mobile publishing workflow, this does grant you access to all the standard features and functionality you have on the desktop version.

Our engineering teams are working diligently to align recent security enhancements from our platform with the mobile app for non-SSO customers. We understand this has an impact on your publishing workflow and we greatly appreciate your patience and understanding.

In the meantime, I recommend subscribing to the Khoros Status Page for the most recent news and updates regarding products and the mobile app.
EricaL
Helper
5 years ago
Our Okta app doesn't connect to the mobile app it only connects to Khoros mobile web browser. So disappointing and also means we are not able to use the mobile app. SMH.
llucas
Mentor
5 years ago
EricaL thanks for the update, what a shame. I guess I have to set actual calendar reminders to grab the content from Facebook then.
VivekG
Khoros Alumni (Retired)
5 years ago
llucas EricaL It looks like your company uses SSO, but it is not set to be mandatory for logging in to Khoros. Nonetheless, the simplest path here may be for you to reach out to your Okta admins and ask them to get it connected to the Khoros Marketing app. From the Khoros perspective, everything appears to be wired up correctly for the login to work as long as Okta provides us with the appropriate credentials after you log in.

Blog Post

Overview of February 7th Outage