One way that an attacker could have obtained this information is by accessing the database system tables to check for interesting columns, where the table is known to contain sensitive information.
sensitive personal data) and likely had to look for it. In this type of attack, the attacker is often after “juicy” information (i.e.
FLEXBOOKER DATA BREACH 2021 PASSWORD
The first key takeaway is that understanding the standard working hours/days in business organizations and deviations from it can help to detect a potential data breach.Īccording to “ have I been pwned,” a service that tracks data breaches and leaked data, FlexBooker’s data breach exposed 3.7 million accounts including email addresses, names, phone numbers and for a small number of accounts, password hashes and partial credit card data.It is easy to understand that an activity in an account when people are most likely not working or on vacation could be a clear risk indicator. We have worked with Amazon to restore the security of our account, and will continue to work with Amazon to maintain security.”ĭuring the holiday season, many people take time off. The encryption key was not accessed or downloaded. Customer passwords included in the data were encrypted. The data accessed did not include credit card or other payment card numbers. After working further with Amazon to understand what happened, we learned a certain set of data, including personal information of some customers was accessed and downloaded including: first and last names, email addresses, and phone numbers. In response to the outage, we worked closely with Amazon to restore a backup, and were able to restore operations within 12 hours. As part of the incident, our system data storage was also accessed and downloaded. What we learned from FlexBookerĪccording to FlexBooker’s notification to customers, “On December 23, 2021, starting at 4:05 PM EST our account on Amazon’s AWS servers was compromised, resulting in our temporary inability to service customer accounts, and preventing customers from accessing their data. In this blog, we’ll review what we learned about this breach and use it as a starting point for explaining the importance of having a solution in place that applies security best practices, as well as establishes what consists of normal behavior in the organization, so they can quickly find deviations from it. Imperva has no specific insider knowledge into how the breach unfolded, but we can learn a lot from FlexBooker’s data breach notification as well as additional related sources. A few weeks ago, an appointment scheduling solution, FlexBooker notified its customers that it had been breached.
0 kommentar(er)
