Saturday, 18 March 2017

On 03:19 by admin   No comments
Cinema chain Ster-Kinekor’s website was hacked last year revealing more than 6-million accounts, in what is considered to the largest data dump in SA.

Security website Haveibeenpwned.com reported the breach, which occurred in 2016. The website lists data breaches, and alerts registered users if their e-mail addresses have been compromised. This reporter received an e-mail on March 13 warning about the hack.

"In 2016, the South African cinema company Ster-Kinekor had a security flaw, which leaked a large amount of customer data via an enumeration vulnerability in the API (application programming interface) of their old website," the e-mail read.

"While more than 6-million accounts were leaked by the flaw, the exposed data only contained 1.6-million unique e-mail addresses. The data also included extensive personal information such as names, addresses, birth dates, genders and plain-text passwords."

News of this South African hack comes as the US authorities indicted two Russian intelligence officers this week for the 2014 hack into 500-million Yahoo accounts.

A total of 1,619,544 accounts were compromised, according to Haveibeenpwned.com, including compromised data such as "dates of birth, e-mail addresses, genders, names, passwords, phone numbers, physical addresses, [and] spoken languages".

Several phone calls to Ster-Kinekor’s offices on Friday afternoon, including that of the CEO’s office, were put through to voicemail.

0 comments:

Post a comment