Hostinger, one of the largest Internet hosting companies, revealed today that its platform was violated.
In a blog post, the company he says that some hacker(s) obtained access on an internal server. There he found an authorization token for an internal API, which he used to make “calls APIs affecting customer information”.
The company said the hacker made API calls to a base database that has stored personal information from approximately 14 million customers. This information includes Hostinger usernames, customer IP addresses, last names, and contact information such as phone numbers, emails, and home addresses.
The database also contained user passwords in encrypted form.
So the web hosting company said it decided to reset all passwords on the affected accounts, but also to reveal the affected customers.
The company did not provide an exact number of affected users, but password reset emails began circulating, with several users reporting receiving the messages on Twitter.
The company said the attackers failed to obtain financial data, nor did they breach customer premises.
The incident was discovered on Friday, August 23 and Hostinger created a σελίδα announcing the event.
The company said the bugs have been fixed.
We have assembled a team of internal and external experts and scientists to investigate the origin of the incident and increase measures security of all Hostinger businesses. As required by law, we are already in contact with the authorities.
___________________________
- Edge from Chromium, will Microsoft's new strategy succeed?
- Internet Archive is at risk of being blocked by ISPs
- Internet 2020: Who Owns Our Digital Identity?
- Bitdefender fixes a bug in 2020's Free Antivirus
- You've drank microplastics but don't worry, at least not yet