Cyber Incident Victim: malapelli.com

The attacker was able to gain access to the application server and exfiltrate sensitive data, including credit card numbers, names, addresses, phone numbers, and email addresses of customers. The incident is significant because it highlights the importance of proper security measures in protecting customer data, particularly in e-commerce websites that handle sensitive information.

In September 2015, a cyber attack occurred on an unnamed e-commerce website, resulting in the exfiltration of sensitive customer data. The attacker, identified as Smitt3nz AKA Rubber, used a technique known as Exfiltration from Application Server to gain unauthorized access to the server and steal personal information belonging to thousands of customers.

According to an online article published at the time of the incident, the attacker was able to obtain credit card numbers, names, addresses, phone numbers, and email addresses of customers who had made purchases on the website. The breach is significant because it underscores the importance of implementing robust security measures to protect customer data in e-commerce websites, particularly those that handle sensitive information such as financial details.

The incident serves as a reminder for businesses to regularly assess their cybersecurity protocols and ensure they are up to date with the latest threats and vulnerabilities. It also highlights the need for adequate training of employees in security best practices, including password management and data encryption techniques. By taking proactive measures to secure customer data, e-commerce websites can prevent similar breaches from occurring in the future and maintain the trust of their customers.