ClickUp Security Flaw Exposes 959 Emails Linked to Major Fortune 500 Firms
A major security flaw in the popular productivity platform ClickUp has exposed sensitive data, including 959 email addresses tied to Fortune 500 companies and government agencies. The primary vulnerability stems from a hardcoded Split.io SDK token left inside ClickUp’s production JavaScript bundle.
ORIGINAL SOURCE →via GBHackers Security
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] ‘DeFi United’ Mobilises $300M to Stabilise Markets After Aave-Linked Exploit - MEXC
- [CYBER] DeFi United unveils plan to restore rsETH after $292 million Kelp DAO exploit - The Block
- [CYBER] DeFi United Unveils Technical Plan to Restore rsETH Backing After KelpDAO Exploit - Yahoo Finance
- [CYBER] Medtronic Hack Confirmed After ShinyHunters Threatens Data Leak
- [CYBER] Weekly Dev Log 2026-W03
- [CYBER] New Zealand spy plane reports possible North Korea sanctions breach at sea - Al Jazeera