Peatix sent an email to its users that their information has been improperly assessed or obtained. Peatix is an event organizing platform, currently ranked among the Alexa Top 3,500 most popular sites on the internet.
Experts Comments
If anyone has been affected by the breach it is vital that they follow the steps to build more protection on their accounts.
Sharing stolen data has become a quick way of making cash. We used to see this sort of information being sold on the dark web only, but more recently we have seen a shift to it being offered on the open web. Instagram stories are a quick way to open up to the masses in a short space of time and therefore increases the chances of a quick sale.
If anyone has been affected by the breach it is vital that they follow the steps to build more protection on their accounts. Furthermore, if anyone spots .....Read More
It is also critical that users are vigilant as their data may be used in phishing campaigns.
Usually, when we hear about hackers offering stolen data, this takes place over deep web forums or pages. In this case, however, we are also seeing the use of social media platforms such as Instagram and messaging apps like Telegram to promote stolen names, usernames, hashed passwords, and email addresses.
Peatix has issued a notification on their webpage about the breach and is also contacting users to change their password on the platform to avoid possible account misuse. Users should,.....Read More
Users should also be on the lookout for targeted phishing emails from scammers posing as Peatix or a related company.
Peatix has not stated what algorithm is used to hash and salt the passwords in the database, which would give us a better indication as to whether users' passwords are at risk. I've seen plenty of breaches of passwords that were hashed with deprecated algorithms such as SHA1 or MD5 that can be cracked with little effort, so it would be good to know what algorithm was used to encrypt those passwords.
Peatix users should change their passwords on Peatix and any other accounts that share the same .....Read More
Dot Your Expert Comments
Only for registered and approved experts. Please register before providing comments. Register here
Linkedin Message
@Chris Hauk, Consumer Privacy Champion, provides expert commentary for "dot your expert comments" at @Information Security Buzz.
"Users also need to be alert for phishing attempts from bad actors posing as Peatix via email or text...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-insight-on-user-data-of-event-management-app-peatix-hacked
Facebook Message
@Chris Hauk, Consumer Privacy Champion, provides expert commentary for "dot your expert comments" at @Information Security Buzz.
"Users also need to be alert for phishing attempts from bad actors posing as Peatix via email or text...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-insight-on-user-data-of-event-management-app-peatix-hacked