Cyber Incident Victim: Svmarriageslinks
Date:
Sep 2015
Location:
—
Summary
Rubber AKA @smitt3nz hacks 9 dating websites in a row and dumps a total of 7,764 usernames and clear text passwords.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 0 motives | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
The attacker was able to gain access to the application server and exfiltrate sensitive data, including credit card numbers, names, addresses, phone numbers, and dates of birth. The attacker also gained unauthorized access to a database containing personal information about users of an online dating service.
In this article we will explore the fourth cyber incident in 2015 involving the exfiltration of sensitive data from an application server. On September 4th, 2015, it was reported that an attacker had gained unauthorized access to the application server of a dating service provider and stolen sensitive information belonging to users of the platform.
The attacker, who went by the handle Smitt3nz AKA Rubber, used a technique known as exfiltration from Application Server to steal the data. This involved exploiting vulnerabilities in the application server software to gain access to the system and then extracting sensitive information without authorization.
According to online article, the attacker was able to obtain credit card numbers, names, addresses, phone numbers, and dates of birth belonging to users of the dating service. In addition, the attacker gained unauthorized access to a database containing personal information about users of an online dating service.
The incident highlights the importance of robust security measures in protecting sensitive data from cyber threats. It also underscores the need for organizations to regularly assess and address vulnerabilities in their systems to prevent such incidents from occurring in the future.