Kreditech Server Breach Claimed to Have Leaked Important Customer Data Over Internet
Data breaches have become almost as common placed as sliced bread. Although, data breaches are not nearly as good as sliced bread, they seem to sandwich massive amounts of data to the point that it leaks out all over the internet making it readily available to the public and cybercrooks.
Kreditech, a German-based financial loan company, has been the brunt of the latest data breach, which has supposedly leaked a considerable amount of information belonging to customers over the internet.
The recent Kreditech data breach is a case where hackers "found" hundreds of gigabytes of documents from the company's customers and potential clients. Among the data breached researchers suspect there are many scanned passports, national IDs, and driver's licenses. With such sensitive data being exposed, it could mean that Kreditech's customers and clients could be the target of attacks involving identity theft.
Krebs, a cybercrime and internet security firm, found out about the data leak from researcher Corey Wells, who developed a crawler that indexes sites in Tor. The information gathered by the researcher concluded that the data included logs from a system that could have been running MongoDB, an open-source document-oriented database that may be run on several different operating systems.
The configuration of the database looked to be poor where it will expose confidential data if the system it is installed on is connected to the internet. What is even worse is that a group of students from Saarland University in Germany found that nearly 40,000 MongoDB systems did not have the security settings to prevent access to Mongo shell for unauthorized entities.
The information spilled in Kreditech's data breach may surmount to more than just simple IDs , it could mean those with the data in their hands could obtain names, addresses, credit card numbers and even emails.
In the most recent data discovered about the Kreditech data breach, it seems to be limited to applicant information mostly obtained from a cached system of Kreditech's website. Though, many are not 100% certain of that new information there is still something to be taken away and learned from this incident. It is also prudent to mention that the latest information about Kreditech's data breach goes against hacker's claim of Kreditech system not being secure.
In any given case of Kreditech being secure or not, it was an apparent breach attempt made, and someone made off with more information than they had going into the breach. As far as the extent of the data obtained, Kreditech and others are being rather tight-lipped about the incident's fine details. In any case, it would be mindful to know the dangers of data breaches and how essential it is to retain a computer with updated software and proper security software when it is connected to the internet.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.