30 Aug Security Breach – 30 Aug 2021
Passwords are serious business. How serious?
The Verizon Data Breach Investigations Report 2021 declares that 80% of data breaches are caused by shared, recycled, insecure, compromised or just plain bad passwords. Plus, a plethora of new online accounts opened by locked-down consumers has brought password reuse into focus.
Mix that up with a veritable inundation of new records to the dark web in the last 12 months, and you’ve got the perfect recipe for password calamity – and it’s unfolding all over the cybersecurity landscape.
Australia – LimeVPN – Security Company
Risk to Small Business: Severe: A hacker stole the backup database, customer payment details, private keys, and took the website offline. In the case of LimeVPN, it means over 69,000 users have had their personal information stolen and put up for sale to the highest bidder.
Risk to Exploited Individuals: Severe: All of LimeVPN’s customers are now at risk because the backup server included a database of their details including username, email address, and password alongside payment information. LimeVPN uses the Web Hosting Billing and Automation service known as WHMCS to handle payments. Also of serious concern is the fact the hacker claims to hold the private key of every user, meaning any traffic passing through LimeVPN can potentially be decrypted.
Customers Impacted: over 69,000 users
France – Chanel – Fashion House
Risk to Small Business: Moderate: French luxury brand Chanel has issued an apology after personal data belonging to its customers was exposed in an incident that impacted customers in Korea. A database belonging to the famed perfume and fashion brand is believed to have been compromised by hackers in a cyberattack at an unnamed cloud-based data storage firm
Risk to Exploited Individuals: Moderate: The stolen data includes birth dates, customer names, gender details, passwords, phone numbers and shopping or payment history. The incident is still under investigation and complete details have not been released.
Customers Impacted: Unknown
Contact Total Computer Technology today and let us help you stay on track to avoid the perils of sloppy cybersecurity.
Follow us on LinkedIn: