Author Topic: cybersecurity talks after leak of 13m e-commerce accounts  (Read 285 times)

Offline thaiga

  • Global Moderator
  • Korat forum specialist
  • *****
  • Posts: 19702
cybersecurity talks after leak of 13m e-commerce accounts
« on: November 20, 2020, 11:18:42 PM »
Minister calls urgent cybersecurity talks after leak of 13m e-commerce accounts
The digital minister has asked experts to help plug gaps in e-commerce security after netizens discovered personal data from more than 13 million accounts up for sale on an underground website. The discovery earlier this week prompted widespread criticism of Thailand’s e-commerce data protection system.

Digital Economy and Society (DES) Minister Buddhipongse Punnakanta said the stolen data includes names, telephone numbers, email addresses, and transactions of customers who made purchases through Lazada, Facebook, Line, Shopee and other platforms in 2018.

The ministry contacted Lazada Thailand, who confirmed that the data was not leaked from its own system. Lazada said it is now investigating the source of the breach.

The DES minister has invited cyber experts from the Electronic Transactions Development Agency (ETDA), the National Cybersecurity Commission and all e-commerce platforms for talks early next week on ways to prevent the hacking and leaking of consumer data.

Puttipong said the DES ministry prioritises the security of personal information and was coordinating with all relevant agencies in a bid to combat the rising threat from cybercriminals.  nationthailand.com
Anyone who goes to a psychiatrist should have his head examined.

Offline thaiga

  • Global Moderator
  • Korat forum specialist
  • *****
  • Posts: 19702
Re: cybersecurity talks after leak of 13m e-commerce accounts
« Reply #1 on: November 21, 2020, 12:10:55 AM »
How do they get away with it

Lazada said it was able to block access to the database, thus preventing further unauthorized access. The firm also disclosed that it discovered the breach through proactive monitoring when the data surfaced on the hacker forum.
Anyone who goes to a psychiatrist should have his head examined.

Offline thaiga

  • Global Moderator
  • Korat forum specialist
  • *****
  • Posts: 19702
Re: Lazada denies being behind information leak
« Reply #2 on: November 21, 2020, 10:39:30 AM »
Lazada denies being behind information leak
Buddhipongse: Says information from 2018

On-line retail operator, Lazada, insisted on Friday it was not chargeable for leaking any web shoppers’ information following a report claiming that about 13 million information from Lazada Thailand have been being provided on the market on an underground buying and selling discussion board.

The corporate stated it had carried out an preliminary investigation and located the information being provided got here from numerous e-commerce operators.

Lazada was responding to a Fb publish concerning the sale of knowledge by which the vendor claimed to work for the corporate’s Thai workplace.

The “Sorn Hack Net Baeb Maew Maew” Fb web page reported that the information out there to consumers on the darkish internet included clients’ names, telephone numbers and e mail addresses.

The vendor claimed the data got here from Lazada.co.th and he had 13 million information.

Lazada stated it had not leaked the information, was truly among the many victims broken by the incident and was investigating.

The corporate additionally stated it had strictly complied with information safety guidelines and all the time positioned emphasis on information privateness.

Digital Financial system and Society Minister Buddhipongse Punnakanta stated preliminary inquiries confirmed that the information put up on the market included private data plus particulars of transactions akin to dates, quantities of cash and channels used within the transactions.

Mr Buddhipongse confirmed the data was from 2018 and that the channels included Lazada, Fb, the Line chat software and Shopee.

He stated he had invited representatives from e-commerce operators and cyber-security specialists from numerous companies to fulfill subsequent week to debate easy methods to tighten information safety.

englishthainews.com
Anyone who goes to a psychiatrist should have his head examined.

Offline thaiga

  • Global Moderator
  • Korat forum specialist
  • *****
  • Posts: 19702
Re: Data Breaches - yes i remember
« Reply #3 on: November 21, 2020, 12:56:29 PM »
data breaches, hacks whatever you like to call them even thieves. as of the last couple of years just how many have occurred, far to many. online breaches email addresses,  passwords, credit card numbers. given online in good faith as they are confidential. it's becomes everyday life to be asked for personal details online. which can backfire if in the wrong hands. (EasyJet suffered a major breach that began in January 2020 but didn’t notify customers until April and May 2020. over 2,000 customers had their credit and debit card details accessed)

just one of many was  EasyJet – May 19, 2020

EasyJet admits data of nine million hacked

EasyJet has admitted that a "highly sophisticated cyber-attack" has affected approximately nine million customers.

It said email addresses and travel details had been stolen and that 2,208 customers had also had their credit and debit card details "accessed".

The firm has informed the UK's Information Commissioner's Office while it investigates the breach.

EasyJet first became aware of the attack in January.

It told the BBC that it was only able to notify customers whose credit card details were stolen in early April.

"This was a highly sophisticated attacker. It took time to understand the scope of the attack and to identify who had been impacted," the airline told the BBC.

"We could only inform people once the investigation had progressed enough that we were able to identify whether any individuals have been affected, then who had been impacted and what information had been accessed."

Stolen credit card data included the three digital security code - known as the CVV number - on the back of the card itself.

EasyJet added that it had gone public now in order to warn the nine million customers whose email addresses had been stolen to be wary of phishing attacks.

It said that it would notify everyone affected by 26 May.

It did not provide details about the nature of the attack or the motives, but said its investigation suggested hackers were targeting "company intellectual property" rather than information that could be used in identity theft.

"There is no evidence that any personal information of any nature has been misused, however, on the recommendation of the ICO, we are communicating with the approximately nine million customers whose travel details were accessed to advise them of protective steps to minimise any risk of potential phishing.

"We are advising customers to be cautious of any communications purporting to come from EasyJet or EasyJet Holidays."

In response to the breach, the ICO said that it was investigating.

"People have a right to expect that organisations will handle their personal information securely and responsibly. When that doesn't happen, we will investigate and take robust action where necessary."

It also warned people to be on the lookout for phishing attacks and directed them to its advice on its website on how to spot such scams.

Lots more on that @ the beeb bbc.com
Anyone who goes to a psychiatrist should have his head examined.

Offline thaiga

  • Global Moderator
  • Korat forum specialist
  • *****
  • Posts: 19702
You might remember just back in march the Virgin Media data breach which affected 900,000 people

Virgin Media data breach affects 900,000 people
A Virgin Media database containing the personal details of 900,000 people was left unsecured and accessible online for 10 months, the company has admitted.
bbc.com

Anyone who goes to a psychiatrist should have his head examined.

Offline thaiga

  • Global Moderator
  • Korat forum specialist
  • *****
  • Posts: 19702
Re: Data Breaches - yes i remember - Facebook December 19, 2019
« Reply #5 on: November 26, 2020, 02:23:19 PM »
Yes another you might remember good old Facebook, December 19, 2019.
more than 267 million Facebook users had been left exposed. data include names, phone numbers, and Facebook IDs, shocking goings on, the data they want from you, what did you have for breakfast, they wanna know everything, you get new friends every day
BUT ... you don't know them  :spin

Anyone who goes to a psychiatrist should have his head examined.

 



Thailand