Search This Blog

Showing posts with label WizCase. Show all posts

Forex Broker Leaked Customer Records


White hat hackers have disclosed a significant leak of client information by online forex dealer FBS Markets. This incorporates a great many confidential records, including names, passwords, email addresses, passport numbers, national IDs, credit cards, financial transactions and more. Details of the security breach, which has since been rectified after the dealer was cautioned, were uncovered by Chase Williams, a white hat hacker and site security expert, on the website WizCase. At this stage it isn't evident whether any of the leaked information has been utilized for deceitful purposes by threat actors.

The information leak was revealed as a part of a progressing WizCase research project that scans for unstable servers, and tries to set up who the proprietors of those servers are. WizCase informed FBS of the issue. Williams said that FBS left a server containing right around 20 TB of information and over 16bn records exposed. Regardless of containing very sensitive financial data, the server was left open without any password protection of encryption. WizCase's group said the FBS data “was accessible to anyone.” “The breach is a danger to both FBS and its customers,” WizCase said. “User information on online trading platforms should be well secured to prevent similar data leaks.”

The broker said, “The protection of our clients privacy is one of the core values of FBS, and we stick to the highest protection standards. FBS has never had such major accidents. In October 2020 we faced an overheating on the server which affected our logs recording. During the time when we were setting up a new ElasticSearch server, several wrong subnet masks were added accidentally, which led to the possibility to access the server for a very limited number of people only, in a certain part of the world.” 

FBS added that it had completed a technical audit and that to its knowledge no information had been downloaded. It has contacted the customers affected and whose information may have been undermined and encouraged them on what to do. FBS has additionally moved to a more encoded VPN and has introduced an intrusion detection system. New rules for working with the forex brokers infrastructure have been applied and other safety efforts have additionally been carried out.

15,000 Clients Data Leaked Accidently by a Turkish Firm


Accidentally, a law firm has disclosed client data of 15,000 incidents in which individuals have been killed and wounded after a cloud misconfiguration. Through a misconfigured Amazon S3 bucket, the WizCase team unearthed a huge data leak with private details regarding Turkish residents. The server includes 55,000 judicial records concerning more than 15,000 court proceedings, affecting hundreds of thousands of individuals. The firm affirmed that it does not require any permission to browse the 20GB trove that anyone with the URL may have viewed the very confidential information.

WizCase is one of the leading multinational websites offering cybersecurity resources, tricks, and best practices for online safety. Also incorporates VPN ratings and tutorials. The data was traced by WizCase, back to the Turkish actuarial consulting company, Inova Yönetim, which analyses details for risk and premium estimation.

The online security team has revealed a major abuse of the data from an Amazon Bucket misconfigured by INOVA YÖNETIM & AKTÜERYAL DANIŞMANLIK, a Turkish legal attorney. Inova is an actuarial consulting firm that gathers mathematical data and measures the probability and premiums of insurers. Since 2012, Inova has been in operation and has dealt with thousands of cases. 

The researchers have found that, along with insurance and accident data, the personally identifiable information (PII) about the survivor in each of the 15,000 court cases including name, national ID and marital status, and day of birth is also available. Some records have revealed much more specific details about claimants, witnesses, and others, including detailed accident information, car registration numbers, breathalyzer test reports, incident descriptions, and many more. In certain cases, the data has more details about the victims or other persons involved in it. It involved information of parties such as victims, event participants, police officers, lawyers. 

The data appeared to relate to the circumstances between the beginning of 2018 and the end of summer 2020. Many who are vulnerable to the snafu could be at risk from scammers following extremely persuasive phishing emails or telephone calls to get more financial and personal details. 

“With some social engineering, bad actors or criminals could contact an [mobile] operator, masquerading as the victim, and verify all kinds of verification questions operators would ask to clone a SIM card,” WizCase stated. “After having access to victims’ phone calls and SMS messages, bad actors could then try to do the same operation with clients’ insurance and bank.” 

According to WizCase, for situations like this, preserving the internal data is unusually challenging since it is always in the hands of the organization one deals for. One must be sure that they just send the correct details and ask them what security steps they are undertaking to keep their private data private. If one gets a call relating to the crash, please notify their Inova contact and ensure that an application comes from them, and never trust someone asking for personal details over a phone.

66,000 Gamers Exposed due to Cloud Misconfiguration, a free platform with a sum of 56 accessible classic board and games like Hearts, Crazy Eights, Euchre, Dominoes, Backgammon, and others, has uncovered the personal data of tens of thousands of users. 

A research group at WizCase found the wide-open server, with zero encryption and no password protection, through a straightforward search. It was traced back to, a mainstream free-to-play card and table game platform with 100,000 Google Play downloads and about 20,000 active daily players globally.

“Online gaming brings together user personal information, transaction details, and gaming habits. This fusion of confidential information creates a lucrative environment for cybercriminals to exploit,” the WizCase report clarified. “Gaming platforms routinely experience multiple attacks from hackers, sabotage from competing platforms, intra-platform attacks by players targeting the Internet connections of rival users, and more.” In this situation, over 30GB of information was leaked in the security snafu, including 23 million records. In this trove, the researchers selected 66,000 client profiles including usernames, emails, device details, IP addresses, hashed passwords, Facebook, Twitter, and Google IDs, in-game transaction details, bets, and details about restricted players. 

The passwords were hashed utilizing the Bcrypt algorithm utilizing 10 rounds which, while tedious, isn't incomprehensible for a determined attacker to break, WizCase contended. These could then be utilized to attempt to open different sites and accounts utilized by the same gamers. The firm cautioned that if a threat actor had found the exposed data, they might have created persuading phishing assaults by email or telephone, utilizing the extensive personal information in these profiles. 

WizCase said if a client was prohibited for exhibitionism, somebody who knows their email address or social media accounts could threaten to uncover them. Additionally, given bans are ultimately at the arbitrators' caution, a restricted player's very own reputation might be destroyed if the allegation was without merit. 

For clients, experts concur basic prescribed procedures for online security is consistently a smart thought — be cautious about what you share, try not to tap on dubious messages or interfaces and proper password hygiene is important, WizCase exhorted. The firm additionally proposed utilizing a VPN service to keep location data secure and install good antivirus software while the industry struggles to keep up.