Exploit: Unauthorized database access
Mobifriends: Dating app
Risk to Small Business: 2.313 = Severe
Customer data has been uploaded to the Dark Web after cybercriminals compromised the data app in January 2019. Fortunately, the data doesn’t include private messages, images, or sexual-related content, but users’ personal information and account passwords are readily available. In addition to the logistical and PR implications of the breach, Mobifriends could face regulatory penalties under Europe’s General Data Protection Regulation.
Individual Risk: 2.091 = Severe
Users’ personal details, including names, email addresses, phone numbers, dates of birth, gender information, user names, passwords, and app activity, were compromised. This information can be used to craft targeted spear phishing campaigns or to execute other forms of fraud. Those impacted by the breach should immediately update their Mobifriends account information and any other accounts using the same credentials. In addition, they should consider enrolling in an identity monitoring service to ensure the long-term integrity of their information.
Customers Impacted: 3,688,060
How it Could Affect Your Customers’ Business: Thousands of account credentials are compromised every day. Businesses that are serious about protecting company and customer data will add an extra level of defense against bad actors by requiring strong, unique passwords and enabling two-factor authentication on all accounts.