Data compromise exposes data for hundreds of millions of individuals: KidSecurity app
In September 2023, a tracking app for parents to know where their children are, KidSecurity, was found to have not configured authentication for their Elasticsearch and Logstash collections. The app with over 1,000,000 downloads from the Google Play store inadvertently left user activity logs publicly available to the internet for over a month. The instance contained over 300 million records with private data including 21,000 phone numbers and 31,000 email addresses. This exposure also showed payment details including the first six and last four digits of card numbers, expiry dates and the issuing bank. There have been indications that threat actors have leveraged this misconfiguration to leak the data. Open instances of Elasticsearch are often leveraged by attackers to exploit vulnerabilities. Ransomware re-encryption after failed negotiations: Henry Schein ransomware and data breach In October 2023, healthcare solutions giant Henry Schein suffered from re-encryption of their files after negotiations stalled with the ransomware group Alphv. The group claimed to have 35TB of sensitive data. The re-encryption happened just as the company got back to operating capabilities, so this was a big setback for the company and caused a lack of availability for its applications and ecommerce platform which triggered another two weeks of operational disruption.This breach included 35,000,000 records.
12
Made with FlippingBook - PDF hosting