Recently, we have observed an increased number of unauthorized login attempts on Chatwork.
*The set of email and password used for these unauthorized login attempts were not leaked from Chatwork, but it is likely that a third party attempted to login to Chatwork using the email addresses and passwords obtained illegally from outside the company.
We are taking measures to block the suspicious unauthorized access as soon as we detect them, however it is sometimes difficult to distinguish them from normal logins, so we would like to ask our customers to protect your account by taking the following steps.
Administrators of organizations are encouraged to consider alerting users under the administrative control and taking countermeasures in accordance with the security operations of their respective organizations.
To Set Two-factor Authentication
We strongly recommend setting up two-factor authentication on your account.
By setting up two-factor authentication, the information associated with your smartphone is required to login, so you can protect your account even if your email address and password are compromised.
How to set up two-factor authentication.
* If you use Single Sign-on via SAML authentication, please check with your organization administrator regarding the need to change the SAML authentication settings.
* If you have already set up two-factor authentication, there is no need to reset it.
Change Password
If you are using the same email address and password for multiple services including Chatwork, or if you set the password that can be guessed,we strongly recommend that you change the password for each service to a different one in order to decrease the risk of unauthorized access.
* If you use Single Sign-on via SAML authentication, you cannot change your password on the above page. Please check with your organization administrator regarding the necessity of changing your password.
If You cannot Login
If you forget your password, please reset your password from the following link.
* If your organization is a Business plan or Enterprise plan subscriber, the administrator can also change your password from the admin page.
* When you change the password, you will be logged out from all devices.
* If you use Single Sign-on via SAML authentication, you cannot reset your password on the above page. Please check with your organization administrator how to reset your password.
Inquiries About Unauthorized Access
If you have confirmed an operation history that you do not recognize, or if you find anything suspicious about your account, please contact us from the following page to inquire about the details of the suspicious activity.
We are sorry for any concern this may cause.
We will continue our efforts to prevent unauthorized access, and we appreciate your cooperation.