fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Promo.Com Discloses Data Breach After 22M User Records Leaked Online

Promo.Com Discloses Data Breach After 22m User Records Leaked Online

Minted

Promo.com, an Israeli-based marketing video creation site, has disclosed a data breach after a database containing 22 million user records was leaked for free on a hacker forum.

Promo is a web site that allows you to create promotional videos or ads that can then be shared on social networks such as Facebook, Instagram, Twitter, and LinkedIn.

In a report shared with BleepingComputer by cybersecurity intelligence firm CloudSEK, a well-known seller of data breaches posted a database containing 22.1 million user records on a hacker forum.

This data contains users email addresses, names, genders, geographic location, and for 2.6 million of the users, their hashed passwords.

Promo database leak
Promo database leak

This leak included 1.4 million cracked passwords, which means they were decrypted and could immediately be used by attackers to log in to the users’ accounts or use the passwords in credential stuff attacks at other sites.

This post was eventually taken down, but this past week another data breach seller released the database again on the same hacker forum.

Sample of the sold user database
Sample of the sold user database

It is not known if this database also contained the cracked passwords.

Also read: Free 8 Steps Checklist for Companies to Prevent Data Breach

Promo issues data breach notification

After the public leaking of their database, Promo issued a data breach notification stating they became aware of a vulnerability on a third-party partner’s service that affected their data.

“On July 21, 2020, our team became aware that a data security vulnerability on a 3rd party service had caused a breach affecting certain non-finance related Slidely and Promo user data. We immediately stopped all suspicious activity and launched an internal investigation to further learn about what happened,” Promo’s data breach notification states.

Promo further stated that no financial information was exposed, but that a users IP address, gender, email address, name, and hashed and salted passwords were disclosed.

“The exposed data includes first name, last name, email address, IP address, approximated user location based on the IP address, gender, as well as encrypted, hashed and salted password to the Promo or Slidely account. Although your account password was hashed and salted (a method used to secure passwords with a key), it’s possible that it was decoded,” the data breach continues.

As the salt for each user’s password was also included in the database, it is much easier for threat actors to crack the passwords and see them in their plain text form.

Promo also stated that “Your Log in via your social media account was not affected,” but one of the databases shared on the hacker forum included social network login tokens.

It is unknown if these token can be used to log in to your social network accounts, but it is advised to regenerate the tokens if possible.

Promo is performing a mandatory reset on all affected accounts the next time they log into Promo.com.

What Promo customers should do

While the passwords leaked in this data breach were encrypted, threat actors have already started to decrypt them, and the rest can be decrypted over time.

After a user’s password is cracked, threat actors would be able to use them in credential stuffing attacks at other sites.

Due to this, if you are a Promo customer, you should immediately change your password to one that is strong and unique.

If you use that same password at other sites, it is strongly advised that you change your password to a unique one at those sites as well.

A password manager can make it much easier to use unique passwords at every site and is highly recommended.

If you are concerned that you were exposed in this breach, Have I Been Pwned has added the database to their site, and you can use it to check if your record was included in the data breach.

Also read: 7 Key Principles of Privacy by Design that Businesses should adopt

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us