The Open Risk Data functionality of the Open Risk Manual is in still in active development!

GB PayAsUGym Dec 2016 Hacking (Q10282)

From Open Risk Data
A data breach risk event
Language Label Description Also known as
English
GB PayAsUGym Dec 2016 Hacking
A data breach risk event

    Statements

    is instance of
    Hacking
    0 references
    involves entity
    PayAsUGym
    0 references
    has date
    December 2016
    0 references
    has textual description
    Fitness website PayAsUGym has been breached in a hack that may have exposed up to 400K emails and passwords. In a breach notice to users, the firm admitted one of its servers was hacked after underground researchers posted screenshots purporting to show PayAsUGyms hacked database via Twitter. The 1x0123 hacker crew later claimed that they planned to sell off the compromised database through underground markets. PayAsUGym apparently used the obsolete MD5 hashing technology, making it straightforward to work out the corresponding passwords using a brute force attack and dictionary lookups. Troy Hunt, the security researcher behind the haveibeenpwned breach notification website, warned over the weekend that PayAsUGym data appears to be circulating with more than 400k unique emails in there f (English)
    1 reference
    is documented in URL
    http://www.theregister.co.uk/2016/12/19/payasugym_breach/
    http://www.infosecurity-magazine.com/news/payasugym-breach-exposes-more/
     

    Sitelinks

                Retrieved from "https://www.openriskmanual.org/data/index.php?title=Item:Q10282&oldid=9195"
                Creative Commons ShareAlike 4.0 International
                Powered by MediaWiki