JP Sanrio Digital Dec 2015 Hacking (Q15941)

From Open Risk Manual
A data breach risk event
Language Label Description Also known as
English
JP Sanrio Digital Dec 2015 Hacking
A data breach risk event

    Statements

    is instance of
    Hacking
    0 references
    has date
    December 2015
    0 references
    has textual description
    Sanrio Digital notifies that personal information belonging to members of the consumer website SanrioTown.com was publicly accessible owing to a security vulnerability. The vulnerability has been corrected and investigations are underway. To our knowledge at this time, no personal information of SanrioTown.com users was stolen or exposed. On December 19, it was revealed by security researcher Chris Vickery that personal information (such as names, date of birth, gender) belonging to SanrioTown.com members was accessible by someone who knew the IP addresses of specific vulnerable servers. The vulnerable data did not include credit card information or other payment information. Users passwords were accessible but remained securely encrypted with the cryptographic hash function SHA-1. Please (English)
    1 reference
    is documented in URL
    http://news.softpedia.com/news/data-breach-on-hello-kitty-servers-over-3-3-million-accounts-exposed-497872.shtml
    http://www.continuityinsights.com/news/2016/01/hello-kitty-owner-sanrio-says-fan-site-security-leak-fixed
    http://www.csoonline.com/article/3017171/security/database-leak-exposes-3-3-million-hello-kitty-fans.html
    http://sanriodigital.com/story/security-advisory
     
      Retrieved from "https://www.openriskmanual.org/wiki/index.php?title=Item:Q15941&oldid=52440"
      Creative Commons Attribution-NonCommercial-ShareAlike
      Powered by MediaWiki