Security News > 2020 > February > Slickwraps Discloses Data Breach

Slickwraps, a company that provides protection solutions and accessories for phones, computers and other devices, has revealed that user data was compromised recently after a third party accessed an unprotected database left accessible from the Internet.

The company did not provide specific information on the number of impacted users, but Troy Hunt, founder of data breach notification service Have I Been Pwned, says that 858,000 unique email addresses were compromised in the data breach.

In their data breach notification, Slickwraps said it became aware of the issue after being contacted by an individual via Twitter, and that it contacted Troy Hunt on February 20 to verify the authenticity of the leaked data.

The researcher claimed he had gained access to "Their entire 17GB MySQL database," containing Slickwraps admin account details, customer data, and API credentials for MadMimi, PayPal Payments Pro, Braintree, ShipHero, Zendesk, Facebook, Twitter, and Instagram.

Slickwraps, which has contacted the FBI on the issue, says the vulnerability was patched on February 21, and that all data has been secured.

News URL

http://feedproxy.google.com/~r/Securityweek/~3/Qh8uVHJYpC0/slickwraps-discloses-data-breach