Security Update

June 30, 2026

We recently identified and addressed a security issue affecting the Twilio credentials that users connect to Talkyto. We want to be transparent about what happened and what we've done.

What we did

We identified and closed the underlying vulnerability, strengthened access controls around connected credentials, and rotated the relevant internal keys. Our investigation is complete and our systems have been remediated.

Reporting to authorities

In line with our obligations under the GDPR, we have reported the incident to the Croatian data protection authority (AZOP).

Working with Twilio

We are cooperating closely with Twilio to review the incident and further harden the integration. In coordination with Twilio, affected accounts may be prompted or required to rotate their credentials as an additional safeguard.

What we ask of our users

As a precaution, please:

• Rotate your Twilio Auth Token and API keys in the Twilio Console, and update them in Talkyto.
• Review your Twilio usage and your Voice Geographic / Dialing Permissions for anything unexpected.
• If you notice unauthorized charges, open a fraud case with Twilio Support — we're glad to support such claims with incident details.

Our commitment

We take the security of your data seriously and are continuing to invest in hardening our platform. If you have any questions, contact us at support@talkyto.com.

— The Talkyto Team