Morning Tidings

Tag: Breached

  • Cyber Attack at Taj Hotel: Data of Tata-Owned Hotel Breached by ‘Dnacookies’, Around 1.5 Million Customers at Risk

    Cyber Attack at Taj Hotel: Data of Tata-Owned Hotel Breached by ‘Dnacookies’, Around 1.5 Million Customers at Risk

    New Delhi, November 23: Around 1.5 million people may have had their personal information compromised in a recent data breach at Taj Hotels, owned by Tata, as per reports.

    “The perpetrator, known as ‘Dnacookies’, is requesting $5,000 for the complete dataset, encompassing addresses, membership IDs, mobile numbers, and other personally identifiable information (PII),” the reports further stated. “We have been made aware of someone claiming possession of a limited customer data set which is of non-sensitive nature. Safety and security of our customers’ data is of paramount importance to us,” said the spokesperson of Indian Hotels Company Ltd (IHCL), which runs the Taj Group. Cyber Attack on US Government Agencies: Federal Institutions in America Reportedly Hit by Cyberattack, CISA Assessing Impact.

    “We are investigating this claim and have notified the relevant authorities. We continue to monitor our systems and there is no suggestion of any current or ongoing security issue or impact on business operations,” said the spokesperson. However, Delhi Police is yet to confirm if they have received any complaint from the Taj Group.

    (The above story first appeared on Morning Tidings on Nov 23, 2023 07:52 PM IST. For more news and updates on politics, world, sports, entertainment and lifestyle, log on to our website morningtidings.com).

  • GoDaddy Reveals Nearly 1.2 Million WordPress Websites Breached, Warn Users of Phishing Attacks

    New Delhi, November 23: In a huge data breach, global web hosting platform GoDaddy has revealed that nearly 1.2 million of its WordPress customers’ sensitive information has been compromised. In a blog post, GoDaddy’s Chief Information Security Officer (CISO) Demetrius Comes said that they’ve discovered unauthorised access to its managed WordPress servers.

    “Up to 1.2 million active and inactive Managed WordPress customers had their email address and customer number exposed. The exposure of email addresses presents risk of phishing attacks,” Comes said late on Monday. On November 17, the company discovered unauthorised third-party access to our Managed WordPress hosting environment. Pakistani Group Targets India’s Critical Infrastructure and Cybersecurity Firm, Warns of Phishing Attack.

    “We identified suspicious activity in our Managed WordPress hosting environment and immediately began an investigation with the help of an IT forensics firm and contacted law enforcement. Using a compromised password, an unauthorised third party accessed the provisioning system in our legacy code base for Managed WordPress,” the company explained.

    GoDaddy has warned users that this exposure can put users at greater risk of phishing attacks. The investigation is ongoing, but “we have determined that, beginning on September 6, 2021, the unauthorised third party used the vulnerability to gain access to the following customer information”, the company informed.

    The original WordPress Admin password that was set at the time of provisioning was also exposed. “If those credentials were still in use, we reset those passwords. For active customers, sFTP and database usernames and passwords were exposed. We reset both passwords,” said GoDaddy.

    “We are sincerely sorry for this incident and the concern it causes for our customers. We will learn from this incident and are already taking steps to strengthen our provisioning system with additional layers of protection,” said Comes.

    (The above story first appeared on Morning Tidings on Nov 23, 2021 01:05 PM IST. For more news and updates on politics, world, sports, entertainment and lifestyle, log on to our website morningtidings.com).