The Global Distribution System (GDS) is a unique tool used by travel agents worldwide to book air travel – yet it has very few security features. Unless the system’s IT infrastructure is overhauled, cybercriminals will continue to be able to access passengers’ personal data and hack their plane tickets.

En 2015, le danger posé par les supports connectés non-sécurisés avait fortement été médiatisé lorsque les données personnelles de plus de 3 millions de clients d’Hello Kitty, stockées sur une base de données MongoDB et laissée ouverte par défaut, avait été exposées. De nombreuses entreprises continuent de souffrir aujourd’hui de fuites massives occasionnées par cette […]

The dangers of unsecured connected devices were made all too clear in 2015 when the personal data of more than 3 million Hello Kitty clients, stored on an open MongoDB database, was leaked to the public. Today, companies continue to suffer from major data leaks caused by inadequate security, as seen in the Ghostshell affair.

Despite the widespread notoriety of the processes used in phishing campaigns, they continue to claim victims. In general, acts of fraud can be detected by paying close attention to the URL.

A Romanian hacker acting under the pseudonym GhostShell has posted 36 million user accounts stolen by compromising 110 MongoDB databases. Among these accounts, 3.6 million are coupled with passwords.

Hackers robbed over $951 million from the Federal Bank of Bangladesh, but “only” $81 million actually slipped through the cracks and into the hands of the criminals. The remaining $870 million were frozen and should be returned to the Federal Bank of Bangladesh.