Vengeful hacker exposes DomainFactory customer banking data and passwords
by DatyDaity - July 12, 2018 at 10:15 AM
#1
A German web-hosting firm has suffered a severe data breach because one of its customers reportedly owed money to the attacker. The company only learned of the breach when the hacker announced it himself, on its support forum.

On Jan. 29, the attacker compromised customer names, company names, various addresses, telephone numbers, DomainFactory passwords, dates of birth, bank names and account numbers, and Schufa scores (German credit score).

However, the company and its customers only learned of the breach six months later, on July 3, when he made an entry on the DomainFactory support forum to break word of his deed. As proof, he published the data of a number of customers for everyone to see.

The reason behind the attack, according to German news outlet Heise Online, was to obtain the credentials of an customer who owed the attacker money. When he noticed that DomainFactory was reluctant to acknowledge the breach, he decided to make it public.

DomainFactory’s explanation, however, differs a bit. In a forum post, the web hosting firm explains (machine-translated from German):

“The result of an initial investigation was that after a system change that took place at the end of January, certain customer information was unintentionally accessible to third parties via a data feed. This data feed was triggered when customers made changes to their DomainFactory accounts, but they caused system errors when they were saved.”

DomainFactory said it quickly shut down the forum to prevent further access to the leaked data. The firm then hired an unnamed security company to focus additional resources on mitigation.

The firm urges all customers to change their DomainFactory passwords as soon as possible. These include customer passwords, phone passwords, e-mail passwords, FTP / live disk passwords, SSH passwords and MySQL database passwords. Detailed instructions on how to do that can be found here: blog.df.eu/pw.

Update: news story updated to replace “employee” with “customer” in the paragraphs mentioning the reasons for the attack. Thanks to @SecurityCharlie on Twitter for clarifying that.

Source : https://hotforsecurity.bitdefender.com/b...4f2ba69c84
#2
nigga hacks their site and flex on their own forum, what a legend
#3
Legendary troll ! "Knock Knock. How's there ? Your hacker."
#4
Waouw. And the data are public now?
#5
(July 13, 2018 at 10:15 AM)gipollma Wrote: Waouw. And the data are public now?

The data should be somewhere out there, still haven't found it though.

I'd be willing to throw some coins at anyone that provides information about where to find this data, or maybe even he leak itself.
#6
I hope we get this information fast
#7
Good security Face palm.
#8
Nice article and obviously nice leak lmfao.
#9
I've been hunting for it, I can't find it.
#10
That stuff must worth so much, it never will be public. I would love to check that out
#11
I'm also on the lookout for this database, good if we get it soon.
#12
Think the data wouldnt be sold. The Hacker would get the data from onecustomer, and not more :-( !

Possibly Related Threads…
Thread Author Replies Views Last Post
T-Mobile announces prepaid customer breach sloppyfork 5 2,050 November 28, 2019 at 09:14 AM
Last Post: MrBr
Hacker's Forum le3t 14 983 November 27, 2019 at 04:08 PM
Last Post: raidingbrat
Israel extradites Russian hacker to the US for massive credit card scam teamkelvinsecteam 0 226 November 17, 2019 at 05:54 AM
Last Post: teamkelvinsecteam

 Users browsing this thread: 1 Guest(s)