The Sandbox: Third-party theft of employee computer permissions, sending emails with malicious links to users

ChainCatcher news, The Sandbox announced that on February 26, unauthorized third parties gained access to a computer of one of the team members and used that access to send a fraudulent email claiming to be from The Sandbox. This email contained hyperlinks to malware that could remotely install malware on users' computers, granting control over the computer and access to users' personal information.

The Sandbox stated that after discovering the unauthorized access, they notified the recipients and suspended the employee's account and access to The Sandbox. No further impact has been identified at this time. (Source link)