IoT / Fashion website hacked, millions of accounts stolen
Fashion website hacked, millions of accounts stolen
21 April 2017 |
An online fashion fantasy game was hacked into last year, thereby compromising over two million customer accounts. Worrying as it is, what's worse is that the owners haven't owned up to the data breach yet.
It took a cyber-security website to inform the public about the data breach, but the owners are yet to acknowledge it, let alone apologise for it.
Vigilante.pw, a popular database breach compiling website, recently opened our eyes to the fact that Fashion Fantasy Game, a social networking game for fashion enthusiasts, was hacked into in 2016, which resulted in as many as 2,436,258 customer accounts being compromised.
Thanks to Vigilante.pw, the public, especially users of the app, are now aware of true extent of the data breach. A number of cyber-security firms have helped spread the message too, yet we are still waiting for a semblance of admission from those responsible for securing the data that was breached.
A few days ago, InterContinental Hotels Group acknowledged and laid out details of a massive cyber-attack on its servers in the United States and Puerto Rico which took place last year. While the news did generate outrage and raised questions about the group's internal cyber-security protocols, what made customers relent was the fact that the group was aware of the threat and was committed to ensure there was no repeat.
The government, along with groups engaged in fighting cyber threats, is now working towards ensuring that firms, especially those storing large amounts of private customer data, pull up their socks and implement the toughest cyber-security protocols. The government is also implementing tough fines on those who do not take cyber threats seriously, and hence end up getting hacked in the process.
The British Government is offering an ambitious and helpful 'Cyber Essentials' accreditation programme for enterprises, which aims to help companies strengthen their IT systems, implement the latest cyber security practices and effectively handle and protect customer data. The fact that only 10% of sole traders and 15% of firms employing one to four employees are now part of the programme, suggests how serious such firms are in tackling cyber threats.
It remains to be seen how the government ensures that firms, big or small, come out with details of cyber-attacks and inform the public about them as soon as they are discovered. The case of Fashion Fantasy Game is something we know about because of alert cyber-security experts, but there may be a lot more which we do not know about yet because firms chose to hide them instead of sharing them with the public.
Latest posts by Jay Jay (see all)
- A third of UK businesses still struggling to process data access requests - 23rd May 2019
- TalkTalk failed to inform 4,545 customers that they were victims of 2015 breach - 22nd May 2019
- Google stops Huawei’s access to Android updates and Google services - 20th May 2019
- Ten cyber criminals behind GozNym malware operations indicted in the US - 16th May 2019
- Less than 1% of data breach investigations by ICO resulted in monetary fines - 16th May 2019