Almost 14 million customers of hosting provider Hostinger need to reset their passwords as a hacker got into their database.The incident occurred on August 23 and a third party was able to access usernames, hashed passwords, emails, first names, and IP addresses.
This was possible because the server had an authorization token that allowed access and privilege escalation to a RESTful API used for queries about customers and their accounts, including phone numbers and home address or business address.
Web host Hostinger says data breach may affect 14 million customers https://t.co/m5fl89g1ua pic.twitter.com/WHg0wWyRs8
— David Papp (@DavidPapp) August 26, 2019
About the Author
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.
