There is no respite for us, as information security incidents continue to occur. It's time for us to once again report on two recent notable data leaks.
Let's start with a recent major incident, which affected users of one well-known messenger. LY Corporation, a major Japanese internet company and owner of the popular Line app, experienced an incident that resulted in the leak of approximately 440, 000 items of personal data, including those of Line messenger users.
The leak was the result of unauthorized access to the subsidiary's computer system in the end of October. It took the company a month to determine the extent of the incident.
The leak affected LY's customers, partners and employees. An official statement of company representatives about the incident claims, that the following data was leaked:
- Age group of Line users
- Genders of Line users
- Service use histories of Line users
- Full names of employees and partners
- Identification numbers of employees
- Email addresses of employees and partners.
Allegedly, 300,000 Line app users, 86,000 LY partners and 51,000 LY employees had their data leaked. According to the company spokesman, no cases of the exposed data misuse have been reported.
As a result of the second incident, large trove of personal details was leaked. Appscook Technologies, an Indian company that develops apps used by hundreds of schools in India and Sri Lanka, exposed around one million confidential files due to misconfigured systems. The point was that the company's storage bucket was available to anyone who was willing to make use of it.
The company's applications aim to organize online learning and provide a communication link between parents and schools regarding children's progress. Thus, most of the leaked information belonged to minors, posing a significant threat to their safety.
Allegedly, the incident revealed the following information:
- Full names of students
- Full names of parents
- Pictures of students
- Names of the schools children attend
- Birth certificates
- Fee receipts
- School performance information
- Home addresses
- Phone numbers.
The leak was discovered by Cybernews researchers, who contacted Appscook representatives but, according to Cybernews, haven't received a response.
Not so long ago, we also reported on the Southern Association of Independent Schools incident. At that time, due to an unprotected password-protected database, student health information, financial reports, and even school security reports became publicly available.
Subscribe to get helpful articles and white papers.
We discuss industry trends and give advice on how to deal with data leaks and cyber incidents.
SearchInform uses four types of cookies as described below. You can decide which categories of cookies you wish to accept to improve your experience on our website. To learn more about the cookies we use on our site, please read our Cookie Policy.
Necessary Cookies
Always active. These cookies are essential to our website working effectively.
Cookies does not collect personal information. You can disable the cookie files
record
on the Internet Settings tab in your browser.
Functional Cookies
These cookies allow SearchInform to provide enhanced functionality and personalization, such as remembering the language you choose to interact with the website.
Performance Cookies
These cookies enable SearchInform to understand what information is the most valuable to you, so we can improve our services and website.
Third-party Cookies
These cookies are created by other resources to allow our website to embed content from other websites, for example, images, ads, and text.
Please enable Functional Cookies
You have disabled the Functional Cookies.
To complete the form and get in touch with us, you need to enable Functional Cookies.
Otherwise the form cannot be sent to us.
Subscribe to our newsletter and receive a bright and useful tutorial Explaining Information Security in 4 steps!
Subscribe to our newsletter and receive case studies in comics!