Monday, October 2, 2023
  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Compu-zoneUpdated
    • ViewnetUpdated
    • Sri ComputersUpdated
    • StartecUpdated
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Compu-zoneUpdated
    • ViewnetUpdated
    • Sri ComputersUpdated
    • StartecUpdated
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
No Result
View All Result
Home Data Breaches

StoreHub Denies Data Leak Claim Involving A Million Users (Update)

Following a report by SafetyDetectives on the matter.

by Ian Chee
June 16, 2022
StoreHub login access token

Source: SafetyDetectives.

86
SHARES
Share on FacebookShare on Twitter

UPDATE [4:30 PM]: StoreHub has sent us a statement that says that its own internal investigations show that the vulnerability did not involve sensitive financial data or passwords. The company also “ensured that no tokens within the dataset could be used to login into a merchant’s account”.

ORIGINAL STORY [1:14 PM]:

You may not have heard of the name StoreHub, but you may have made use of its software at some point in time. The company provides point of sale (POS) software to over 1500 businesses, including retail shops and restaurants. But a report by cybersecurity publishing group SafetyDetectives claims that it may have left the personal data of about a million people exposed.

According to the report, the vulnerability was discovered all the way back in January. This left over 1TB of data, including 1.7 billion records and the aforementioned personal information of a million people, at risk. More specifically, the data can be divided into two categories: data of businesses using StoreHub, and data of said business’ customers. Personally identifiable information among the data include people’s full names, phone numbers, physical and email addresses, as well as type of device used.

SafetyDetectives goes on to say that, upon discovering the leak, its cybersecurity team contacted StoreHub, but received no response. They then contacted the Malaysia Computer Emergency Research Team (MyCERT) and Amazon Web Services instead. The vulnerability was fixed sometime between 28 January and February 2, according to the report.

Source: Pixabay.

In a statement to The Star, StoreHub said that “the vulnerability was patched and resolved” on the same day the company was informed by AWS. Though this notification reportedly came on 3 February via email, which doesn’t quite match up with mentioned timeline provided by SafetyDetectives.

At any rate, this is one more incident of people’s personal data being either exposed or leaked outright. Just within the last month, there have been two other instances. One was the exposure of employee data under PIKAS. The other was the data set containing personal information of about 22.5 million Malaysians. The Ministry of Home Affairs has since denied that the latter came from the national registration department (JPN).

(Source: SafetyDetective, The Star via Amanz)

What’s your Reaction?
+1
0
+1
0
+1
0
+1
0
+1
0
+1
0
+1
0

Follow us on Instagram, Facebook, Twitter or Telegram for more updates and breaking news. 

Filed Under exposedLeakpersonal dataSafetyDetectivesStoreHub
Updated 4:33 pm, Thu, 16 June 22
Back to top
Share34Tweet22SendShare
No Result
View All Result

TRENDING THIS WEEK

  1. 1
    Fintech

    Report Claims Merchants Will Be Charged With Transaction Fees For Receiving DuitNow Payments Starting 1 November 2023 [UPDATE]

  2. 2
    Wearables

    Xiaomi Watch 2 Pro, Smart Band 8 Land In Malaysia From RM199

  3. 3
    Laptops

    ASUS Launches Vivobook 16; Starts From RM2,599

  4. 4
    Mobile Phones

    realme C51 Now Official; Available In Malaysia For RM529 Until 8 October 2023

  5. 5
    Mobile Phones

    Xiaomi 13T Series Now Official; Price Starts From RM1,799

NETWORK

  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks

ABOUT

  • Advertise
  • Careers
  • Privacy Statement
  • Contact Us
  • Editorial Policy
  • Terms & Conditions

©2023 VIJANDREN RAMADASS. ALL RIGHTS RESERVED.

No Result
View All Result
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Compu-zone
    • Viewnet
    • Sri Computers
    • Startec
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables

©2023 LOWYAT, LLC. ALL RIGHTS RESERVED.