Friday, June 29, 2018

A concert, sports, hamburgers and social networks

The day you have been waiting for so long has finally arrived. Your favorite singer comes to town and you could not miss it. You bought your ticket months ago and now it is time to set everything up. New trainers to resist a few hours of non-stop jumping, sharing a picture on the social networks to inform about the hours remaining and eating some fast-food in the way before getting in line to be on the first row. 


But, maybe other groups, that are not the ones attending the concert, have access to all the personal data thanks to simple things such as buying new trainers of a specific brand, or getting a ticket through the internet.

The ticket sale web Ticketmaster, has suffered a data breach of approximately a 5% of its UK users. The origin has been a security breach caused, according to the company, by a product to help its customers managed by Inbenta, an external company. This mistake has affected like 40.000 people, according to sources close to the company, and personal data has been exposed, such as names, physical and mail addresses, phone numbers and even the clients’ credit card numbers. Ticketmaster reached the users quickly so they could change their passwords, furthermore, they recognized that any user that had bought a ticket through their system in the UK between February and the 23rd of June of this year could be affected.

Following the concert and the data filtration, the sportswear company Adidas, has started an investigation after knowing about a potential data breach that could affect millions of Americans. Usernames, password hashes and contact information, which the company describes as "limited data", could have been obtained from people who made purchases on the Adidas website in the US. UU., Adidas.com/US.

McDonalds has been other of the big companies to suffer a data violation, since a vulnerability in this fast-food chain allows to steal the users’ password. Abusing Insecure Cryptographic Storage and a Cross-Site- Scripting Server, it is possible to steal passwords from McDonald’s users, apart from other details such as usernames, addresses and contact details.

By last, and still recovering from the Cambridge Analytica case, Facebook is in the spotlight again because a popular application has exposed the private data of up to 120 million users for years. A third-party application called NameTests, has been exposing millions of Facebook users to anyone who finds it.

A concert in which you are going to find hundreds of people, and maybe they all can access your personal data, get to know your address and even your credit card. 

0 comments:

Post a Comment