Cyber Incident Victim: tunesoman.com

Description of the incident:
On December 28, 2015, a cyber attack was reported on tunesoman.com, an online music streaming platform based in Turkey. The attackers used an exfiltration technique from application server to steal sensitive data such as user credentials and other personal information of users. According to the report, the attackers managed to breach the security measures of the company by exploiting a vulnerability in their application server software. Once inside the system, they were able to extract sensitive data without being detected for several months before the incident was discovered. The stolen data included user credentials and other personal information such as names, addresses, phone numbers, and email addresses.

The attackers also managed to steal a significant amount of money from users' accounts by exploiting vulnerabilities in the platform's payment system. The company took immediate action after discovering the breach and informed affected users about the incident. They also offered free identity protection services to all affected users for one year as a precautionary measure.

The incident highlighted the importance of regular security audits and penetration testing to identify vulnerabilities in application servers before they can be exploited by attackers. It also underscored the need for organizations to have robust incident response plans in place to minimize the impact of such incidents on their users and customers.

The cyber attack on tunesoman.com on December 28, 2015, serves as a reminder that no organization is immune to cyber attacks, even those with robust security measures in place. It emphasizes the importance of staying vigilant and proactive in identifying vulnerabilities before they can be exploited by attackers.