Slack announced that a database storing user profile information has been compromised. The company has implemented two-factor authentication going forward. The intrusion took place during a four-day period in February, Slack said. No financial or payment data was involved in the breach, and the company did not give any indication of how the attackers got into Slack s network. The user database in question contains usernames, email addresses and hashed passwords. The breach was cheered on social media by a number of security experts.
Source: https://threatpost.com/slack-discloses-breach-of-its-user-profile-database-implements-2fa/111872/