Exploit: Unauthorized Database Access
123RF: Stock Photo Provider
Risk to Small Business: 2.233 = Severe
Popular stock photo source 123RF discovered that someone had stopped by or more than just some free art this week after 8.3 million of its client records appeared on the Dark Web. Based on the dates listed, the information is likely a year or so old.
Individual Risk: 2.427 = Severe
The pilfered data includes user records showing 123RF members’ full name, email address, MD5 hashed passwords, company name, phone number, address, PayPal email if used, and IP address. There is no financial information stored in the database. Users should be on the lookout for possible spear phishing emails like fake PayPal notices using this data.
Customers Impacted: Unknown
How it Could Affect Your Customers’ Business: Guarding user records is essential in today’s business world because savvy users are likely to take their business elsewhere after a breach.
Source:
https://www.hackread.com/ransomware-attack-brazil-top-court-encrypts-backups