Although Disney boasts the happiest place on earth, its new streaming service made for some extremely unhappy users when it was hacked mere hours after launching. Other data breaches affected a mobile restaurant payment provider, a cryptocurrency wallet service, and a bot provider site. Popular content management systems were another target in November, with fake update notices tricking users into downloading malicious scripts into their sites. These incidents serve as important reminders to prioritize cyber security, which is the very reason we publish our Month in Hacks.
Disney+ Accounts Hacked Hours after Service Launches
Mere hours after the new Disney+ service was launched on Nov. 12, hackers began hijacking user accounts. Many of the accounts ended up on hacking forums, some being given away for free and others costing between $3 and $11.
In cases where accounts were set up with passwords used in the past, hackers are thought to have gained access to accounts using password and email combinations leaked from other sites. In other cases, it’s thought the Disney+ credentials may have been obtained from individuals infected with info-stealing or keylogging malware.
Password and Personal Info of 2.2 Million Users Dumped Online
Personal and password data associated with an estimated 2.2 million accounts is now floating around online, thanks to a breach involving two different websites. One website is the cryptocurrency wallet service of GateHub, where data from about 1.4 million accounts were stolen. The other is the EpicBot bot provider site of RuneScape, where about 800,000 users were affected.
Fake Update Notices Used to Trick Users of WordPress and Other CMS Sites
People who use WordPress, Drupal, Joomla, and other content management system (CMS) sites need to be aware of two campaigns recently discovered by Zscaler. The campaigns use fake update notices, which trick users into downloading a Remote Access Trojan (RAT) and malicious redirector scripts.
The two campaigns include a fake Flash Player update as well as a fake font update. Hackers are able to attack through vulnerabilities introduced by themes, extensions and plugins. The overall goal of the campaigns is to steal sensitive information.
Data Breach Hits PayMyTab Customers
A data leak has exposed personal and financial data belonging to customers of PayMyTab, which provides mobile and card terminals for restaurants.The leaked information includes customer names, phone numbers, email addresses, order and restaurant information, and the last four digits of customer credit cards.
The hacker responsible for the leak notified vpnMentor to “raise awareness” of the breach and encourage other mobile payment providers to take data protection and cyber security more seriously.
All these hacks and more could have been prevented with better security hygiene. TeleSign protects 21 of the top 25 global web properties and we are prepared to help you. To learn more about how TeleSign uses authentication and mobile identity solutions to protect against fraud, click here to talk to an expert today.